Bug 2448713 (CVE-2026-23258) - CVE-2026-23258 kernel: net: liquidio: Initialize netdev pointer before queue setup
Summary: CVE-2026-23258 kernel: net: liquidio: Initialize netdev pointer before queue ...
Keywords:
Status: NEW
Alias: CVE-2026-23258
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
medium
medium
Target Milestone: ---
Assignee: Product Security DevOps Team
QA Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2026-03-18 18:04 UTC by OSIDB Bzimport
Modified: 2026-03-18 18:55 UTC (History)
0 users

Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments (Terms of Use)

Description OSIDB Bzimport 2026-03-18 18:04:13 UTC 
In the Linux kernel, the following vulnerability has been resolved:

net: liquidio: Initialize netdev pointer before queue setup

In setup_nic_devices(), the netdev is allocated using alloc_etherdev_mq().
However, the pointer to this structure is stored in oct->props[i].netdev
only after the calls to netif_set_real_num_rx_queues() and
netif_set_real_num_tx_queues().

If either of these functions fails, setup_nic_devices() returns an error
without freeing the allocated netdev. Since oct->props[i].netdev is still
NULL at this point, the cleanup function liquidio_destroy_nic_device()
will fail to find and free the netdev, resulting in a memory leak.

Fix this by initializing oct->props[i].netdev before calling the queue
setup functions. This ensures that the netdev is properly accessible for
cleanup in case of errors.

Compile tested only. Issue found using a prototype static analysis tool
and code review.
Comment 1 Jon Moroney 2026-03-18 18:51:57 UTC 
Upstream advisory:
https://lore.kernel.org/linux-cve-announce/2026031818-CVE-2026-23258-d181@gregkh/T
Note You need to log in before you can comment on or make changes to this bug.