CVE-2026-23132:
Linux Debian vulnerability analysis and mitigation

In the Linux kernel, the following vulnerability has been resolved:

drm/bridge: synopsys: dw-dp: fix error paths of dw_dp_bind

Fix several issues in dw_dp_bind() error handling:

Missing return after drm_bridge_attach() failure - the function continued execution instead of returning an error.
Resource leak: drm_dp_aux_register() is not a devm function, so drm_dp_aux_unregister() must be called on all error paths after aux registration succeeds. This affects errors from:
- drm_bridge_attach()
- phy_init()
- devm_add_action_or_reset()
- platform_get_irq()
- devm_request_threaded_irq()
Bug fix: platform_get_irq() returns the IRQ number or a negative error code, but the error path was returning ERR_PTR(ret) instead of ERR_PTR(dp->irq).

Use a goto label for cleanup to ensure consistent error handling.

Source: NVD

Not a customer? See how Wiz maps CVEs like this one to real cloud attack paths.

Score

Published February 14, 2026

Severity MEDIUM

CNA Score N/A

Affected Technologies

Has Public Exploit No

Has CISA KEV Exploit No

CISA KEV Release Date N/A

CISA KEV Due Date N/A

Exploitation Probability Percentile (EPSS) 4.3

Exploitation Probability (EPSS) N/A

Affected packages and libraries

Sources

NVD
Debian Security Tracker
- Debian 14 Severity MEDIUMHas FixAdded at: Feb 15, 2026
Ubuntu Security Tracker
- Ubuntu 16.04, 18.04, 20.04 Severity MEDIUMNo FixAdded at: Feb 16, 2026

Get a CVE risk assessment

Get a prioritized view of CVEs in your cloud—so you can focus on what's exploitable, not just what's listed.

CVE ID	Severity	Score	Technologies	Component name	CISA KEV exploit	Has fix	Published date
CVE-2026-40393	HIGH	8.1	Linux Debian	mesa	No	Yes	Apr 12, 2026
CVE-2026-4154	HIGH	7.8	GIMP	gimp-plugin-python3	No	Yes	Apr 11, 2026
CVE-2026-40386	MEDIUM	4	Linux Debian	libexif	No	No	Apr 12, 2026
CVE-2026-40385	MEDIUM	4	Linux Debian	libexif	No	No	Apr 12, 2026
CVE-2026-31413	N/A	N/A	Linux Debian	linux	No	Yes	Apr 12, 2026