Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1310 CNY

100%
Buy Us a Coffee

CVE-2026-52904— drm/nouveau: fix nvkm_device leak on aperture removal failure

AI Predicted 5.5 Difficulty: Moderate EPSS 0.02% · P5
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2026-52904

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
drm/nouveau: fix nvkm_device leak on aperture removal failure
Source: NVD (National Vulnerability Database)
Vulnerability Description
In the Linux kernel, the following vulnerability has been resolved: drm/nouveau: fix nvkm_device leak on aperture removal failure When aperture_remove_conflicting_pci_devices() fails during probe, the error path returns directly without unwinding the nvkm_device that was just allocated by nvkm_device_pci_new(). This leaks both the device wrapper and the pci_enable_device() reference taken inside it. Jump to the existing fail_nvkm label so nvkm_device_del() runs and balances both. The leak was introduced when the intermediate nvkm_device_del() between detection and aperture removal was dropped in favor of creating the pci device once.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
LinuxLinux c0bfe34330b5fafdbbc63a7124841711651b96b9 ~ 5edd564ccb002ffc830e7818c1c4a992db774678 -
LinuxLinux 6.12 -

II. Public POCs for CVE-2026-52904

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2026-52904

登录查看更多情报信息。

Patches & Fixes for CVE-2026-52904 (4)

Same Patch Batch · Linux · 2026-06-09 · 21 CVEs total

CVE-2026-46324netfilter: nf_tables: use list_del_rcu for netlink hooks
CVE-2026-46315io_uring/waitid: clear waitid info before copying it to userspace
CVE-2026-46316KVM: arm64: vgic-its: Drop the translation cache reference only for the erased entry
CVE-2026-46317KVM: arm64: Reassign nested_mmus array behind mmu_lock
CVE-2026-46318Revert "mm/hugetlbfs: update hugetlbfs to use mmap_prepare"
CVE-2026-46319net/sched: act_ct: Only release RCU read lock after ct_ft
CVE-2026-46320tap: free page on error paths in tap_get_user_xdp()
CVE-2026-46321tun: free page on short-frame rejection in tun_xdp_one()
CVE-2026-46322tun: free page on build_skb failure in tun_xdp_one()
CVE-2026-46323net: gro: don't merge zcopy skbs
CVE-2026-52907media: rockchip: rkcif: fix off by one bugs
CVE-2026-46325RDMA/rxe: Fix iova-to-va conversion for MR page sizes != PAGE_SIZE
CVE-2026-46326iio: pressure: mprls0025pa: fix spi_transfer struct initialisation
CVE-2026-46327dm: fix unlocked test for dm_suspended_md
CVE-2026-46328apparmor: fix rlimit for posix cpu timers
CVE-2026-46330Revert "net/smc: Introduce TCP ULP support"
CVE-2026-46329erofs: handle end of filesystem properly for file-backed mounts
CVE-2026-46332greybus: gb-beagleplay: bound bootloader receive buffering
CVE-2026-52905mm/damon/core: disallow non-power of two min_region_sz on damon_start()
CVE-2026-529069p: fix access mode flags being ORed instead of replaced

IV. Related Vulnerabilities

Same product: Linux
Same vendor: Linux

V. Comments for CVE-2026-52904

No comments yet

Leave a comment