Primary

Context

Linux Kernel USB isp116x Memory Leak Vulnerability

Vulnerability

Patched

A memory leak vulnerability has been identified in the Linux kernel's USB isp116x driver. The issue arises when the debugfs_lookup() function is called; the resulting reference must be released with dput() to prevent memory leakage. Failure to do so can lead to a gradual increase in memory usage over time. The vulnerability has been addressed by modifying the code to use debugfs_lookup_and_remove(), which automatically manages the reference correctly. This fix is applicable to the Linux kernel stable tree.

Impact

Exploitation of this vulnerability leads to a memory leak, where allocated memory is not properly released, potentially causing increased memory usage over time.

Added: Sep 18, 2025, 2:29 PM

Updated: Sep 18, 2025, 2:29 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

4.0

remediation

7.7

relevance

0.5

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

4.0

remediation

7.7

relevance

0.5

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel USB isp116x Memory Leak Vulnerability

Vulnerability

Impact

Affected Products

Linux kernel

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating