Linux Kernel Wi-Fi RSI Driver Memory Leak Vulnerability

A memory leak vulnerability has been identified in the Linux kernel's Wi-Fi RSI driver, specifically within the 'rsi_coex_attach()' function. This issue arises because the 'coex_cb' callback is not properly freed when the 'rsi_create_kthread()' function fails, leading to a memory leak. The vulnerability affects several versions of the Linux kernel.

Impact

Exploitation of this vulnerability leads to a memory leak, where allocated memory is not properly released, potentially causing increased memory usage and degradation of system performance over time.

Reproduction

The vulnerability can be reproduced by invoking the 'rsi_coex_attach()' function in the Wi-Fi RSI driver when the 'rsi_create_kthread()' function fails. This failure can be simulated, which will result in the 'coex_cb' callback not being freed, causing a memory leak.

Remediation

Users can upgrade to the latest version of the Linux kernel, where this vulnerability has been addressed. Instructions for upgrading the Linux kernel can be found in the official Linux documentation.