Volerion logoVolerion
Volerion logoVolerion

Linux Kernel Memory Leak Vulnerability in Blktrace via Debugfs Lookup

Vulnerability

A memory leak vulnerability has been addressed in the Linux kernel's blktrace component. The issue arose because the debugfs_lookup() function was not properly releasing memory, leading to a gradual memory leak. The vulnerability affects the stable versions of the Linux kernel. The recommended solution is to use debugfs_lookup_and_remove(), which automatically manages the memory correctly.

Impact

The vulnerability could lead to a memory leak, causing increased memory usage over time.

Reproduction

The vulnerability can be reproduced by calling debugfs_lookup() in the blktrace component without subsequently calling dput() to release the memory. This omission will result in a memory leak that accumulates over time.

Remediation

Users can update to the latest version of the Linux kernel where this vulnerability has been fixed. Instructions for downloading the patched version are available on the Linux kernel official website.

Added: Sep 18, 2025, 2:35 PM
Updated: Sep 18, 2025, 2:35 PM

Vulnerability Rating

Custom Algorithm
spread
9.0
impact
0.6
exploitability
4.3
remediation
7.7
relevance
0.6
threat
4.8
urgency
2.9
incentive
1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.