CVE-2026-31658
In the Linux kernel, the following vulnerability has been resolved: net: altera-tse: fix skb leak on DMA mapping error in tse_start_xmit()
CVSS
5.5
Medium
EPSS
0.1%
p2
KEV
—
Exploit Today
1
0-100
Published: Apr 24, 2026 · Last modified: Jul 14, 2026 · CWE-401
0.1%EPSS · 30 days0.1%
2026-06-302026-07-16
In the Linux kernel, the following vulnerability has been resolved: net: altera-tse: fix skb leak on DMA mapping error in tse_start_xmit() When dma_map_single() fails in tse_start_xmit(), the function returns NETDEV_TX_OK without freeing the skb. Since NETDEV_TX_OK tells the stack the packet was consumed, the skb is never freed, leaking memory on every DMA mapping failure. Add dev_kfree_skb_any() before returning to properly free the skb.
- git.kernel.orghttps://git.kernel.org/stable/c/2eb9d67704ca8f1101f7435b85f113ede471f9f2
- git.kernel.orghttps://git.kernel.org/stable/c/3aca300e88afe56afb000cdc4c65383014fb17f9
- git.kernel.orghttps://git.kernel.org/stable/c/60f462cd2716d86bd2174f9d5e035c9278f30480
- git.kernel.orghttps://git.kernel.org/stable/c/6dede3967619b5944003227a5d09fdc21ed57d10
- git.kernel.orghttps://git.kernel.org/stable/c/9f3ec44aeb58501d11834048d5d0dbaeacb6d4e7
- git.kernel.orghttps://git.kernel.org/stable/c/ae2cd46f57f422b51aedd406ff5d75cbff401d5d
- git.kernel.orghttps://git.kernel.org/stable/c/cb1d318702fdf643061350d164250198df4116f2
- git.kernel.orghttps://git.kernel.org/stable/c/d5ec406f0543bd6cdfd563b08015fdec8c4d5712
- cert-portal.siemens.comhttps://cert-portal.siemens.com/productcert/html/ssa-019113.html
- cert-portal.siemens.comhttps://cert-portal.siemens.com/productcert/html/ssa-082556.html
CVECVSSEPSSKEVRExploitTitleMod.
CVE-2020-218396.5 MED56.1%
——17An issue was discovered in GNU LibreDWG 0.10. Crafted input will lead to an memory leak in dwg_decode_eed ../../src/decode.c:3638.8dCVE-2026-448065.3 MED51.7%
——16Missing release of memory after effective lifetime in Windows Cryptographic Services allows an unauthorized attacker to deny service over a network.14hCVE-2023-315177.5 HIG49.4%
——15A memory leak in the component CConsole::Chain of Teeworlds v0.7.5 allows attackers to cause a Denial of Service (DoS) via opening a crafted file.8dCVE-2026-31047.5 HIG49.0%
——15A specially crafted domain can be used to cause a memory leak in a BIND resolver simply by querying this domain.
This issue affects BIND 9 versions 9.20.0 through 9.20.20, 9.21.0 through 9.21.19, and 9.20.9-S1 through 9.20.20-S1.
BIND 9 versions 9.18.0 through 9.18.46 and 9.18.11-S1 through 9.18.46-S1 are NOT affected.2dCVE-2021-449615.5 MED48.8%
——15A memory leakage flaw exists in the class PerimeterGenerator of Slic3r libslic3r 1.3.0 and Master Commit b1a5500. Specially crafted stl files can exhaust available memory. An attacker can provide malicious files to trigger this vulnerability.8dCVE-2022-254795.5 MED46.1%
——14Vulnerability in Realtek RtsPer driver for PCIe Card Reader (RtsPer.sys) before 10.0.22000.21355 and Realtek RtsUer driver for USB Card Reader (RtsUer.sys) before 10.0.22000.31274 allows for the leakage of kernel memory from both the stack and the heap.8d