{"id":"CVE-2026-23389","summary":"ice: Fix memory leak in ice_set_ringparam()","details":"In the Linux kernel, the following vulnerability has been resolved:\n\nice: Fix memory leak in ice_set_ringparam()\n\nIn ice_set_ringparam, tx_rings and xdp_rings are allocated before\nrx_rings. If the allocation of rx_rings fails, the code jumps to\nthe done label leaking both tx_rings and xdp_rings. Furthermore, if\nthe setup of an individual Rx ring fails during the loop, the code jumps\nto the free_tx label which releases tx_rings but leaks xdp_rings.\n\nFix this by introducing a free_xdp label and updating the error paths to\nensure both xdp_rings and tx_rings are properly freed if rx_rings\nallocation or setup fails.\n\nCompile tested only. Issue found using a prototype static analysis tool\nand code review.","modified":"2026-04-14T03:48:31.719794Z","published":"2026-03-25T10:28:06.991Z","database_specific":{"cna_assigner":"Linux","osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/23xxx/CVE-2026-23389.json"},"references":[{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"},{"type":"WEB","url":"https://git.kernel.org/stable/c/44ba32a892b72de3faa04b8cfb1f2f1418fdd580"},{"type":"WEB","url":"https://git.kernel.org/stable/c/63dc317dfcd3faffd082c2bf3080f9ad070273da"},{"type":"WEB","url":"https://git.kernel.org/stable/c/b23282218eca27b710111460b4964c8a456c6c44"},{"type":"WEB","url":"https://git.kernel.org/stable/c/fe868b499d16f55bbeea89992edb98043c9de416"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/23xxx/CVE-2026-23389.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-23389"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"fcea6f3da546b93050f3534aadea7bd96c1d7349"},{"fixed":"b23282218eca27b710111460b4964c8a456c6c44"},{"fixed":"63dc317dfcd3faffd082c2bf3080f9ad070273da"},{"fixed":"44ba32a892b72de3faa04b8cfb1f2f1418fdd580"},{"fixed":"fe868b499d16f55bbeea89992edb98043c9de416"}]}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-23389.json"}},{"package":{"name":"Kernel","ecosystem":"Linux"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"4.17.0"},{"fixed":"6.12.81"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.13.0"},{"fixed":"6.18.22"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.19.0"},{"fixed":"6.19.7"}]}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-23389.json"}}],"schema_version":"1.7.5"}