Linux Kernel Memory Leak Vulnerability in MMC SDHCI-PCI Component

Vulnerability

A vulnerability in the Linux kernel's MMC SDHCI-PCI component can lead to a memory leak. This issue arises from a missing call to 'pci_dev_put()', which is necessary to decrease the reference count of a 'pci_dev' object before the 'amd_probe()' function returns. While the vulnerability does not affect the 'smbus_dev == NULL' branch, where 'pci_dev_put()' can safely handle a NULL input, the omission in other cases can cause a memory leak.

Impact

The vulnerability can cause a memory leak, potentially leading to increased memory usage and degradation of system performance over time.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Memory Leak Vulnerability in MMC SDHCI-PCI Component

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating