Device Leak in Intel Thunderbolt Driver for Linux Kernel
CVE-2026-23091

Currently unrated

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
4 February 2026

What is CVE-2026-23091?

A device leak was identified in the Intel Thunderbolt driver component of the Linux Kernel. This vulnerability arises during the output device's open() process, where references to the th device may not be adequately released, posing a potential risk of resource leakage. Although recent commits have addressed some error paths in the open() mechanism to fix this leak, certain scenarios still allow for references to persist, necessitating further attention to ensure complete mitigation and system stability.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Linux 39f4034693b7c7bd1fe4cb58c93259d600f55561

Linux 39f4034693b7c7bd1fe4cb58c93259d600f55561 < 64015cbf06e8bb75b81ae95b997e847b55280f7f

Linux 39f4034693b7c7bd1fe4cb58c93259d600f55561

References

https://git.kernel.org/stable/c/af4b9467296b9a16ebc008147...
https://git.kernel.org/stable/c/64015cbf06e8bb75b81ae95b9...
https://git.kernel.org/stable/c/b71e64ef7ff9443835d1333e3...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.