CVE-2026-46171
MediumCVSS 5.5Exploitation Probability (EPSS)
Low risk2th percentile - higher than 2% of all known CVEs
Summary
A vulnerability has been identified in the Linux kernel related to a memory leak in the KVM vector context for RISC-V architecture. If the second memory allocation fails, the first allocation is not freed, leading to a leak.
Risk Assessment
The memory leak may lead to increased resource consumption, which could affect the stability and performance of the system in the long run.
Recommendation
It is recommended to update the Linux kernel to the latest version to eliminate this vulnerability and prevent potential performance issues.
Original NVD description (English source)
In the Linux kernel, the following vulnerability has been resolved: riscv: kvm: fix vector context allocation leak When the second kzalloc (host_context.vector.datap) fails in kvm_riscv_vcpu_alloc_vector_context, the first allocation (guest_context.vector.datap) is leaked. Free it before returning.

