CVE-2026-43231

EUVD-2026-27790
In the Linux kernel, the following vulnerability has been resolved:

media: radio-keene: fix memory leak in error path

Fix a memory leak in usb_keene_probe(). The v4l2 control handler is
initialized and controls are added, but if v4l2_device_register() or
video_register_device() fails afterward, the handler was never freed,
leaking memory.

Add v4l2_ctrl_handler_free() call in the err_v4l2 error path to ensure
the control handler is properly freed for all error paths after it is
initialized.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.5 MEDIUM
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 6%
Affected Products (NVD)
VendorProductVersion
linuxlinux_kernel
3.4 ≤
𝑥
< 5.10.252
linuxlinux_kernel
5.11 ≤
𝑥
< 5.15.202
linuxlinux_kernel
5.16 ≤
𝑥
< 6.1.165
linuxlinux_kernel
6.2 ≤
𝑥
< 6.6.128
linuxlinux_kernel
6.7 ≤
𝑥
< 6.12.75
linuxlinux_kernel
6.13 ≤
𝑥
< 6.18.16
linuxlinux_kernel
6.19 ≤
𝑥
< 6.19.6
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
linux
bookworm
vulnerable
bookworm (security)
6.1.170-1
fixed
bullseye
vulnerable
bullseye (security)
vulnerable
forky
6.19.14-1
fixed
sid
7.0.4-1
fixed
trixie
vulnerable
trixie (security)
6.12.86-1
fixed
Common Weakness Enumeration
Vulnerability Media Exposure
References
https://git.kernel.org/stable/c/1d8558a232ecb187e8e0328d6347a125f437a0fc
https://git.kernel.org/stable/c/242b0aabb1866024a7995a767ac330c158b39aa4
https://git.kernel.org/stable/c/27c508f61963013fdf29097578284099ee7a85a4
https://git.kernel.org/stable/c/2fe28a63d598235595a9601e0d8fdc7c8f4fd575
https://git.kernel.org/stable/c/7fa9754f48cb8eefa566156be341e63d313247e5
https://git.kernel.org/stable/c/ad85bb5623079a35bd400f51de2e2fbc2170bdb2
https://git.kernel.org/stable/c/b8bf939d77c0cd01118e953bbf554e0fa15e9006
https://git.kernel.org/stable/c/de204d87e7d61859937272fe30cbdd46a4cfb10a