Linux Kernel Refcount Leak Vulnerability in sparcspkr Input Handling

Vulnerability

A refcount leak vulnerability has been identified in the Linux kernel's handling of the sparcspkr input. The issue arises in the bbc_beep_probe function, which calls of_find_node_opts_by_path(). This function returns a node pointer with an incremented reference count, but the refcount is not properly decremented after use, leading to a memory leak. The vulnerability has been addressed by adding the missing of_node_put() call to release the reference and prevent the leak.

Impact

Exploitation of this vulnerability could lead to a memory leak, causing increased memory usage over time and potentially leading to memory exhaustion.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Refcount Leak Vulnerability in sparcspkr Input Handling

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating