CVE-2026-43270

EUVD-2026-27667
In the Linux kernel, the following vulnerability has been resolved:

media: mtk-mdp: Fix a reference leak bug in mtk_mdp_remove()

In mtk_mdp_probe(), vpu_get_plat_device() increases the reference
count of the returned platform device. Add platform_device_put()
to prevent reference leak.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.5 MEDIUM
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 6%
Affected Products (NVD)
VendorProductVersion
linuxlinux_kernel
4.10 ≤
𝑥
< 5.10.252
linuxlinux_kernel
5.11 ≤
𝑥
< 5.15.202
linuxlinux_kernel
5.16 ≤
𝑥
< 6.1.165
linuxlinux_kernel
6.2 ≤
𝑥
< 6.6.128
linuxlinux_kernel
6.7 ≤
𝑥
< 6.12.75
linuxlinux_kernel
6.13 ≤
𝑥
< 6.18.16
linuxlinux_kernel
6.19 ≤
𝑥
< 6.19.6
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
linux
bookworm
vulnerable
bookworm (security)
6.1.170-1
fixed
bullseye
vulnerable
bullseye (security)
vulnerable
forky
6.19.14-1
fixed
sid
7.0.4-1
fixed
trixie
vulnerable
trixie (security)
6.12.86-1
fixed
Vulnerability Media Exposure
References
https://git.kernel.org/stable/c/2d93758f42a57f3485534eab858b308e41653de4
https://git.kernel.org/stable/c/403b7c757ac9f6b2ffb7d00ff4795a245f5e8911
https://git.kernel.org/stable/c/4f2a51433a3a65d16975d1e32052d80656da077d
https://git.kernel.org/stable/c/564fd3a63efc3ebbdb5d0a8fc7c0d3f753fbbd5d
https://git.kernel.org/stable/c/a62ba5aa9ee95fd953583e95e519badf0b76ecf3
https://git.kernel.org/stable/c/c44beed2e5caf2cbbe651432baa3a129f18b0169
https://git.kernel.org/stable/c/dd530e29bd514d7187b3e2df8eb2107419c7988f
https://git.kernel.org/stable/c/f128bab57b8018e526b7eda854ca20069863af47