View at Official ubuntu advisory, NVD, CVE.org · CVE detail
Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.
CVE-2023-26257 medium priority: Ubuntu including 1 source packages (dlt-daemon), 8 status rows across 8 suites (focal, jammy, mantic, noble, oracular, plucky, questing, upstream): not-affected 5, needs-triage 2, released 1.
An issue was discovered in the Connected Vehicle Systems Alliance (COVESA; formerly GENIVI) dlt-daemon through 2.18.8. Dynamic memory is not released after it is allocated in dlt-control-common.c.