Primary

Context

Linux Kernel Memory Leak Vulnerability in MTK Ethernet Driver

Vulnerability

Patched

A memory leak vulnerability has been identified in the Linux kernel's MTK Ethernet driver. The issue arises in the 'mtk_probe' function, where the 'mtk_wed_add_hw' function allocates memory that is not properly freed if an error occurs or the module is removed. This vulnerability affects the stable versions of the Linux kernel.

Impact

The vulnerability can lead to a memory leak, causing increased memory usage and potentially leading to memory exhaustion over time.

Added: Dec 24, 2025, 1:26 PM

Updated: Dec 24, 2025, 1:26 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

5.3

remediation

7.7

relevance

1.6

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

5.3

remediation

7.7

relevance

1.6

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Memory Leak Vulnerability in MTK Ethernet Driver

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating