CVE ID : CVE-2026-23032<\/p>\n
Published : Jan. 31, 2026, 12:16 p.m. | 57\u00a0minutes ago<\/p>\n
Description : In the Linux kernel, the following vulnerability has been resolved:<\/p>\n
null_blk: fix kmemleak by releasing references to fault configfs items<\/p>\n
When CONFIG_BLK_DEV_NULL_BLK_FAULT_INJECTION is enabled, the null-blk
\ndriver sets up fault injection support by creating the timeout_inject,
\nrequeue_inject, and init_hctx_fault_inject configfs items as children
\nof the top-level nullbX configfs group.<\/p>\n
However, when the nullbX device is removed, the references taken to
\nthese fault-config configfs items are not released. As a result,
\nkmemleak reports a memory leak, for example:<\/p>\n
unreferenced object 0xc00000021ff25c40 (size 32):
\n comm “mkdir”, pid 10665, jiffies 4322121578
\n hex dump (first 32 bytes):
\n 69 6e 69 74 5f 68 63 74 78 5f 66 61 75 6c 74 5f init_hctx_fault_
\n 69 6e 6a 65 63 74 00 88 00 00 00 00 00 00 00 00 inject……….
\n backtrace (crc 1a018c86):
\n __kmalloc_node_track_caller_noprof+0x494\/0xbd8
\n kvasprintf+0x74\/0xf4
\n config_item_set_name+0xf0\/0x104
\n config_group_init_type_name+0x48\/0xfc
\n fault_config_init+0x48\/0xf0
\n 0xc0080000180559e4
\n configfs_mkdir+0x304\/0x814
\n vfs_mkdir+0x49c\/0x604
\n do_mkdirat+0x314\/0x3d0
\n sys_mkdir+0xa0\/0xd8
\n system_call_exception+0x1b0\/0x4f0
\n system_call_vectored_common+0x15c\/0x2ec<\/p>\n
Fix this by explicitly releasing the references to the fault-config
\nconfigfs items when dropping the reference to the top-level nullbX
\nconfigfs group.<\/p>\n
Severity: 0.0 | NA<\/p>\n
Visit the link for more details, such as CVSS details, affected products, timeline, and more…\u00a0<\/p>\n","protected":false},"excerpt":{"rendered":"
CVE ID : CVE-2026-23032 Published : Jan. 31, 2026, 12:16 p.m. | 57\u00a0minutes ago Description : In the Linux kernel, the following vulnerability has been resolved: null_blk: fix kmemleak by releasing references to fault configfs items When CONFIG_BLK_DEV_NULL_BLK_FAULT_INJECTION is enabled, the null-blk driver sets up fault injection support by creating the timeout_inject, requeue_inject, and init_hctx_fault_inject …<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[26],"tags":[],"class_list":["post-76059","post","type-post","status-publish","format-standard","hentry","category-vulnerability"],"_links":{"self":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/76059","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/comments?post=76059"}],"version-history":[{"count":0,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/76059\/revisions"}],"wp:attachment":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/media?parent=76059"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/categories?post=76059"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/tags?post=76059"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}