Volerion logoVolerion
Volerion logoVolerion

Linux Kernel Memory Leak Vulnerability in mlxsw Component

Vulnerability

A memory leak vulnerability has been identified in the Linux kernel's mlxsw component, specifically within the 'minimal' module. The issue arises in the 'mlxsw_m_linecards_init' function, where the line cards array is not properly freed during error handling. This oversight can lead to a memory leak. The vulnerability affects the Linux kernel stable tree.

Impact

The vulnerability can cause a memory leak, potentially leading to increased memory usage and degradation of system performance over time.

Reproduction

The vulnerability can be reproduced by invoking the 'mlxsw_m_linecards_init' function in the 'minimal' module of the mlxsw component. When the function encounters an error, the line cards array fails to release allocated memory, creating a memory leak. This behavior can be observed by monitoring memory usage before and after the function call, noting the failure to reclaim memory in the error path.

Remediation

The vulnerability has been addressed in the Linux kernel stable tree. Users can upgrade to the latest version of the kernel to apply the fix.

Added: Sep 15, 2025, 2:31 PM
Updated: Sep 15, 2025, 8:36 PM

Vulnerability Rating

Custom Algorithm
spread
9.0
impact
0.6
exploitability
5.7
remediation
7.7
relevance
0.5
threat
4.8
urgency
2.9
incentive
1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.