CVE-2026-53296

high

Description

In the Linux kernel, the following vulnerability has been resolved: mailbox: mailbox-test: free channels on probe error On probe error, free the previously obtained channels. This not only prevents a leak, but also UAF scenarios because the client structure will be removed nonetheless because it was allocated with devm.

References

https://git.kernel.org/stable/c/c02053a9055d5fdfd32432287cca8958db1d5bc5

https://git.kernel.org/stable/c/81c9e7e4030e71391ab479c4c6e17b64802577aa

https://git.kernel.org/stable/c/742001919653e7313b4e91780c5d108be1692365

https://git.kernel.org/stable/c/6c6ce2ccb4fcf1617fec83f91b21aa0265f30701

https://git.kernel.org/stable/c/187069ccc3474516af32350e20d7e449160fa6de

https://git.kernel.org/stable/c/15c4cc3850cfe1b973eb7b63c02314b267f06a64

https://git.kernel.org/stable/c/0ad8c4a03a358de7811ba1ab8cbd1fe76ad0ff6b

https://git.kernel.org/stable/c/02beb178e2e159daeb8f992d7abb16a37da31664

Details

Source: Mitre, NVD

Published: 2026-06-26

Updated: 2026-06-26

Risk Information

CVSS v2

Base Score: 5.6

Vector: CVSS2#AV:L/AC:L/Au:N/C:P/I:N/A:C

Severity: Medium

CVSS v3

Base Score: 7.1

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

Severity: High

EPSS

EPSS: 0.00176