Linux Kernel ath10k Error Handling Vulnerability in Resource Setup

Vulnerability

A vulnerability in the Linux kernel's ath10k wireless driver has been addressed, concerning improper error handling in the management of certain resources. The issue arises because the device_node pointer, obtained through the of_parse_phandle() function, is returned with an incremented reference count. The driver fails to appropriately decrement this reference count in error scenarios, leading to a memory leak. This vulnerability affects several versions of the Linux kernel.

Impact

The vulnerability causes a memory leak by failing to properly manage reference counts, which can lead to increased memory usage and potential exhaustion of system resources.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.0

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.0

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel ath10k Error Handling Vulnerability in Resource Setup

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating