Linux kernel
Moderate fix1 remedy
cpe:2.3:o:kernel:linux_kernel:*:*:*:*:*:*:*
Moderate fix1 remedy
Linux Kernel USB PHY Tahvo Memory Leak Vulnerability in tahvo_usb_probe Function
Vulnerability
Patched
A memory leak vulnerability has been identified in the Linux kernel's USB PHY Tahvo driver, specifically within the tahvo_usb_probe function. The issue arises when the function retrieves an interrupt request (IRQ) and encounters an error. In such cases, it fails to properly handle the error by freeing allocated memory, leading to a memory leak. This vulnerability affects the Linux kernel stable tree.
Impact
Exploitation of this vulnerability leads to a memory leak, where allocated memory is not properly released, potentially causing increased memory usage and degradation of system performance over time.
Reproduction
The vulnerability can be reproduced by loading the USB PHY Tahvo driver and triggering the tahvo_usb_probe function. If the function encounters an error while retrieving the IRQ, it will return without freeing previously allocated memory, creating a memory leak.
Remediation
Users can upgrade to the latest version of the Linux kernel stable tree, where this vulnerability has been addressed.
Added: Sep 18, 2025, 3:16 PM
Updated: Sep 18, 2025, 3:16 PM
Vulnerability Rating
Custom Algorithm
spread
9.0impact
0.6exploitability
4.3remediation
7.7relevance
0.5threat
4.8urgency
2.9incentive
1.7Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.