Description

In the Linux kernel, the following vulnerability has been resolved: phy: rockchip: inno-usb2: Fix a double free bug in rockchip_usb2phy_probe() The for_each_available_child_of_node() calls of_node_put() to release child_np in each success loop. After breaking from the loop with the child_np has been released, the code will jump to the put_child label and will call the of_node_put() again if the devm_request_threaded_irq() fails. These cause a double free bug. Fix by returning directly to avoid the duplicate of_node_put().

INFO

Published Date :

2026-01-31T11:42:08.525Z

Last Modified :

2026-02-09T08:37:24.591Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2026-23030 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2026-23030.

URL Resource
https://git.kernel.org/stable/c/027d42b97e6eb827c3438ebc09bab7efaee9270d cve-icon cve-icon
https://git.kernel.org/stable/c/b97b2c9808c9a97e0ce30216fa12096d8b0eaa75 cve-icon cve-icon
https://git.kernel.org/stable/c/e07dea3de508cd6950c937cec42de7603190e1ca cve-icon cve-icon
https://git.kernel.org/stable/c/ebae26dd15140b840cf65be5e1c0daee949ba70b cve-icon cve-icon
https://git.kernel.org/stable/c/efe92ee7a111fe0f4d75f3ed6b7e3f86322279d5 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2026013120-CVE-2026-23030-9cb8@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2026-23030 cve-icon
https://www.cve.org/CVERecord?id=CVE-2026-23030 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System