Volerion logoVolerion
Volerion logoVolerion

Linux Kernel JSM Driver Memory Leak Vulnerability

Vulnerability

A memory leak vulnerability has been identified in the Linux kernel's JSM (JetStream Multiport) driver, specifically within the serial subsystem. This issue arises during the probe process, where the error handling path fails to properly release resources before exiting, leading to memory leaks. The vulnerability affects several versions of the Linux kernel.

Impact

Exploitation of this vulnerability can lead to memory leaks, causing increased memory usage and potentially leading to memory exhaustion over time.

Reproduction

The vulnerability can be reproduced by loading the JSM driver with Digi Classic adapters. During the probe process, the driver fails to properly manage memory, leading to leaks. This can be observed by monitoring memory usage before and after the driver is loaded.

Remediation

Users can upgrade to the latest version of the Linux kernel where this vulnerability has been addressed. Instructions for upgrading the kernel can be found in the official Linux kernel documentation.

Added: Sep 15, 2025, 6:47 PM
Updated: Sep 15, 2025, 6:47 PM

Vulnerability Rating

Custom Algorithm
spread
9.0
impact
0.6
exploitability
4.3
remediation
7.7
relevance
0.5
threat
4.8
urgency
2.9
incentive
1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.