Skip to main content

Linux Kernel EUVDEUVD-2026-27724

| CVE-2026-43165 MEDIUM
Memory Leak (CWE-401)
2026-05-06 Linux GHSA-cwjr-x8p7-6pv8
5.5
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
5.5 MEDIUM
AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
SUSE
MEDIUM
qualitative

Primary rating from NVD.

CVSS VectorNVD

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
None
Availability
High

Lifecycle Timeline

4
Analysis Generated
Jun 08, 2026 - 12:04 vuln.today
CVSS changed
May 13, 2026 - 21:22 NVD
5.5 (MEDIUM)
Patch available
May 06, 2026 - 13:32 EUVD
CVE Published
May 06, 2026 - 11:27 nvd
MEDIUM 5.5

DescriptionCVE.org

In the Linux kernel, the following vulnerability has been resolved:

hwmon: (nct7363) Fix a resource leak in nct7363_present_pwm_fanin

When calling of_parse_phandle_with_args(), the caller is responsible to call of_node_put() to release the reference of device node. In nct7363_present_pwm_fanin, it does not release the reference, causing a resource leak.

AnalysisAI

Resource leak in the Linux kernel's hwmon nct7363 hardware monitor driver allows a local, low-privileged user to cause a denial-of-service condition through repeated reference exhaustion. The vulnerability resides in nct7363_present_pwm_fanin, which calls of_parse_phandle_with_args() but never releases the acquired device node reference via of_node_put(), violating the kernel's reference-counting contract for device tree nodes. Exploitation requires physical or local authenticated access to a system equipped with NCT7363 hardware and the driver loaded; no public exploit exists and no active exploitation is confirmed (EPSS: 0.02%, 4th percentile).

Technical ContextAI

The Linux kernel's hwmon (hardware monitoring) subsystem includes a driver for the Nuvoton NCT7363 fan controller IC, identified via CPE cpe:2.3:a:linux:linux. The driver uses the kernel's device tree (OF) API - specifically of_parse_phandle_with_args() - to resolve phandle references for PWM and fan-input configuration. The OF API mandates that every successful call to of_parse_phandle_with_args() be paired with an of_node_put() to decrement the reference count on the returned device node. The nct7363_present_pwm_fanin function omits this release, constituting CWE-401 (Missing Release of Memory after Effective Lifetime). Over repeated invocations, unreleased references accumulate, degrading kernel memory accounting and potentially exhausting kobject/device node resources, leading to availability loss.

RemediationAI

Upgrade to Linux kernel 6.18.16, 6.19.6, or 7.0, which include the upstream fix adding the missing of_node_put() call after of_parse_phandle_with_args() in nct7363_present_pwm_fanin. The fix commits are available at https://git.kernel.org/stable/c/c8cde3ddd12ad7d0e6b5a3e0ea3914a9a778adf4 (6.18 series), https://git.kernel.org/stable/c/fb99b58763a95e20b214fc1dd86837ae00a400b7 (6.19 series), and https://git.kernel.org/stable/c/4923bbff0bcffe488b3aa76829c829bd15b02585 (mainline). For systems where immediate kernel upgrade is not feasible, a targeted workaround is to blacklist or unload the nct7363 kernel module (modprobe -r nct7363 and adding nct7363 to /etc/modprobe.d/blacklist.conf), which fully prevents execution of the vulnerable code path at the cost of losing NCT7363 fan-speed and temperature monitoring. This trade-off is acceptable for production systems not actively using hwmon data from this IC. Monitor Red Hat and SUSE security advisories for distribution-specific patched packages.

Vendor StatusVendor

SUSE

Severity: Medium
Product Status
SUSE Linux Enterprise Desktop 15 SP7 Fixed
SUSE Linux Enterprise Desktop 15 SP7 Fixed
SUSE Linux Enterprise High Availability Extension 15 SP7 Fixed
SUSE Linux Enterprise High Availability Extension 15 SP7 Fixed
SUSE Linux Enterprise High Performance Computing 15 SP7 Fixed

Share

EUVD-2026-27724 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy