{"id":"CVE-2026-43397","summary":"drm/bridge: samsung-dsim: Fix memory leak in error path","details":"In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/bridge: samsung-dsim: Fix memory leak in error path\n\nIn samsung_dsim_host_attach(), drm_bridge_add() is called to add the\nbridge. However, if samsung_dsim_register_te_irq() or\npdata-\u003ehost_ops-\u003eattach() fails afterwards, the function returns\nwithout removing the bridge, causing a memory leak.\n\nFix this by adding proper error handling with goto labels to ensure\ndrm_bridge_remove() is called in all error paths. Also ensure that\nsamsung_dsim_unregister_te_irq() is called if the attach operation\nfails after the TE IRQ has been registered.\n\nsamsung_dsim_unregister_te_irq() function is moved without changes\nto be before samsung_dsim_host_attach() to avoid forward declaration.","modified":"2026-07-08T08:13:29.401863812Z","published":"2026-05-08T14:21:40.185Z","database_specific":{"cna_assigner":"Linux","osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/43xxx/CVE-2026-43397.json"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/0b07f7d2c5a4078c2f1c11bb36685084fe4e5c95"},{"type":"WEB","url":"https://git.kernel.org/stable/c/803ec1faf7c1823e6e3b1f2aaa81be18528c9436"},{"type":"WEB","url":"https://git.kernel.org/stable/c/98310fe3a2a79671b739a5344c1a11d74c503e25"},{"type":"WEB","url":"https://git.kernel.org/stable/c/a40b92fb4b26d4cb1b5e439e55a56db7e79a82d1"},{"type":"WEB","url":"https://git.kernel.org/stable/c/e6d779654cda63d632bd8dfcdcabd125057e30a5"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/43xxx/CVE-2026-43397.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-43397"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"e7447128ca4a250374d6721ee98e3e3cf99551a6"},{"fixed":"98310fe3a2a79671b739a5344c1a11d74c503e25"},{"fixed":"0b07f7d2c5a4078c2f1c11bb36685084fe4e5c95"},{"fixed":"e6d779654cda63d632bd8dfcdcabd125057e30a5"},{"fixed":"a40b92fb4b26d4cb1b5e439e55a56db7e79a82d1"},{"fixed":"803ec1faf7c1823e6e3b1f2aaa81be18528c9436"}]}],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-43397.json"}},{"package":{"name":"Kernel","ecosystem":"Linux"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"6.4.0"},{"fixed":"6.6.130"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.7.0"},{"fixed":"6.12.78"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.13.0"},{"fixed":"6.18.19"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.19.0"},{"fixed":"6.19.9"}]}],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-43397.json"}}],"schema_version":"1.7.5"}