Bug 2487003 (CVE-2026-52904) - CVE-2026-52904 kernel: drm/nouveau: fix nvkm_device leak on aperture removal failure
Summary: CVE-2026-52904 kernel: drm/nouveau: fix nvkm_device leak on aperture removal ...
Keywords:
Status: NEW
Alias: CVE-2026-52904
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
unspecified
unspecified
Target Milestone: ---
Assignee: Product Security
QA Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2026-06-09 14:01 UTC by OSIDB Bzimport
Modified: 2026-06-09 16:32 UTC (History)
2 users (show)

Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:


Attachments (Terms of Use)

Description OSIDB Bzimport 2026-06-09 14:01:45 UTC
In the Linux kernel, the following vulnerability has been resolved:

drm/nouveau: fix nvkm_device leak on aperture removal failure

When aperture_remove_conflicting_pci_devices() fails during probe, the
error path returns directly without unwinding the nvkm_device that was
just allocated by nvkm_device_pci_new(). This leaks both the device
wrapper and the pci_enable_device() reference taken inside it.

Jump to the existing fail_nvkm label so nvkm_device_del() runs and
balances both. The leak was introduced when the intermediate
nvkm_device_del() between detection and aperture removal was dropped
in favor of creating the pci device once.


Note You need to log in before you can comment on or make changes to this bug.