Linux Kernel Memory Leak Vulnerability in Tracing Component

Vulnerability

A memory leak vulnerability has been identified in the Linux kernel's tracing component. The issue arises in the function 'tracing_read_pipe()', where allocated memory is not properly freed. This leak has been detected by kmemleak, which reported an unreferenced object, indicating that memory management in this part of the kernel is flawed. The vulnerability allows for a gradual increase in memory usage, which could potentially lead to performance degradation or exhaustion of available memory resources.

Impact

Exploitation of this vulnerability causes a memory leak, where allocated memory is not released, leading to increased memory usage over time. This can result in performance issues or memory exhaustion.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Memory Leak Vulnerability in Tracing Component

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating