Volerion logoVolerion
Volerion logoVolerion

Linux Kernel SCSI MPT3SAS Memory Leak Vulnerability

Vulnerability

A memory leak vulnerability has been identified in the Linux kernel's SCSI MPT3SAS driver. This issue arises from a missing memory deallocation, which can lead to resource exhaustion over time. The vulnerability is present in the stable versions of the Linux kernel.

Impact

Exploitation of this vulnerability can lead to a memory leak, causing increased memory usage and potentially leading to memory exhaustion on the system.

Reproduction

The vulnerability can be reproduced by using the SCSI MPT3SAS driver in the Linux kernel. The driver will fail to properly free memory in certain scenarios, specifically when releasing memory pools, leading to a gradual increase in memory usage.

Remediation

Users can upgrade to the latest version of the Linux kernel where this vulnerability has been addressed. Instructions for upgrading the Linux kernel can be found in the official Linux kernel documentation.

Added: Oct 1, 2025, 1:44 PM
Updated: Oct 1, 2025, 1:44 PM

Vulnerability Rating

Custom Algorithm
spread
9.0
impact
0.6
exploitability
5.7
remediation
7.7
relevance
0.6
threat
4.8
urgency
2.9
incentive
1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.