CVE-2026-31604

Source
https://cve.org/CVERecord?id=CVE-2026-31604
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-31604.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2026-31604
Downstream
Related
Published
2026-04-24T14:42:27.342Z
Modified
2026-06-18T03:54:49.791997451Z
Summary
wifi: rtw88: fix device leak on probe failure
Details

In the Linux kernel, the following vulnerability has been resolved:

wifi: rtw88: fix device leak on probe failure

Driver core holds a reference to the USB interface and its parent USB device while the interface is bound to a driver and there is no need to take additional references unless the structures are needed after disconnect.

This driver takes a reference to the USB device during probe but does not to release it on all probe errors (e.g. when descriptor parsing fails).

Drop the redundant device reference to fix the leak, reduce cargo culting, make it easier to spot drivers where an extra reference is needed, and reduce the risk of further memory leaks.

Database specific
{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/31xxx/CVE-2026-31604.json"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
a82dfd33d1237f6c0fb8a7077022189d1fc7ec98
Fixed
f632987306bce9242cdfcf911ee0b2c9455e05a3
Fixed
a4f4371d194dfa5473cc961f86194084b1b13a69
Fixed
89a9c1bc7d797120bcc290864e0cb10a440a677f
Fixed
af7307e96dad00bcc2675dac650d8558a52f2c6f
Fixed
25a827b7e1d5747a255bdc757f1d3e9e1e8a4e2a
Fixed
bbb15e71156cd9f5e1869eee7207a06ea8e96c39

Database specific

source
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-31604.json"

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
6.2.0
Fixed
6.6.136
Type
ECOSYSTEM
Events
Introduced
6.7.0
Fixed
6.12.83
Type
ECOSYSTEM
Events
Introduced
6.13.0
Fixed
6.18.24
Type
ECOSYSTEM
Events
Introduced
6.19.0
Fixed
6.19.14
Type
ECOSYSTEM
Events
Introduced
6.20.0
Fixed
7.0.1

Database specific

source
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-31604.json"