Primary

Context

Linux Kernel LoongArch KVM Device Memory Leak Vulnerability

Vulnerability

Patched

A memory leak vulnerability has been identified in the Linux kernel's KVM (Kernel-based Virtual Machine) implementation for the LoongArch architecture. The issue arises in the 'kvm_pch_pic_destroy()' function, which fails to properly free allocated memory for 'kvm_device' structures. This oversight occurs because the 'kvm_device->destroy()' method, which is intended to release this memory, is not being executed as expected. The vulnerability affects the Linux kernel stable tree.

Impact

The vulnerability leads to a memory leak, where allocated memory is not properly released, potentially causing increased memory usage over time.

Remediation

Users can upgrade to the latest version of the Linux kernel where this vulnerability has been addressed. Instructions for downloading the patched version are available on the Linux kernel official website.

Added: Jan 31, 2026, 12:25 PM

Updated: Jan 31, 2026, 12:25 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

3.5

remediation

7.7

relevance

2.5

threat

3.2

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

3.5

remediation

7.7

relevance

2.5

threat

3.2

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel LoongArch KVM Device Memory Leak Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating