Volerion logoVolerion
Volerion logoVolerion

Linux Kernel Auxdisplay HD44780 Memory Leak Vulnerability in Remove Function

Vulnerability

A memory leak vulnerability has been identified in the Linux kernel's auxdisplay HD44780 driver. The issue arises in the hd44780_remove() function, which fails to release a memory chunk allocated by hd44780_probe() for the driver data. This oversight leads to a memory leak, as the allocated memory is not properly freed when the device is removed.

Impact

The vulnerability causes a memory leak, where allocated memory is not released, potentially leading to increased memory usage and exhaustion over time.

Reproduction

The vulnerability can be reproduced by loading the HD44780 auxdisplay driver, which allocates memory for the driver data. When the driver is removed, the hd44780_remove() function is called, but it does not free the allocated memory, causing a leak. This can be observed by monitoring memory usage before and after the driver is loaded and removed.

Remediation

The vulnerability has been fixed in the Linux kernel. Users should upgrade to the latest version where this commit is included.

Added: Dec 30, 2025, 5:40 PM
Updated: Dec 30, 2025, 5:40 PM

Vulnerability Rating

Custom Algorithm
spread
9.0
impact
0.6
exploitability
5.7
remediation
7.7
relevance
1.7
threat
4.8
urgency
2.9
incentive
1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.