Linux Kernel ath11k Memory Leak Vulnerability in MHI Registration

A memory leak vulnerability has been identified in the Linux kernel's ath11k wireless driver, specifically within the MHI (Mobile Hardware Interface) registration process. The issue arises because the function 'mhi_alloc_controller()' allocates memory for the MHI controller, but fails to release it properly when an error occurs in 'ath11k_mhi_read_addr_from_dt()'. This oversight can lead to a memory leak, as the allocated memory is not freed. The vulnerability affects several versions of the Linux kernel.

Impact

Exploitation of this vulnerability can lead to a memory leak, where allocated memory is not properly released, potentially causing increased memory usage and degradation of system performance over time.

Reproduction

The vulnerability can be reproduced by triggering an error in the 'ath11k_mhi_read_addr_from_dt()' function during the MHI registration process. This can be done by manipulating the conditions under which the function is called, such as by setting specific device flags that cause the function to fail. When the function fails, the 'mhi_free_controller()' function is not called, leading to a memory leak.

Remediation

The vulnerability has been addressed in the Linux kernel. Users should upgrade to the latest version where this issue has been fixed.