Volerion logoVolerion
Volerion logoVolerion

Linux Kernel ath12k Wi-Fi Driver Memory Leak Vulnerability

Vulnerability

A memory leak vulnerability has been identified in the Linux kernel's ath12k Wi-Fi driver. The issue arises in the 'ath12k_qmi_driver_event_work' function, where the event buffer is not properly freed if the 'ATH12K_FLAG_UNREGISTERING' bit is set. This oversight leads to a memory leak. The vulnerability has been addressed by modifying the function to ensure that the event and all associated list entries are correctly freed, even when the unregistering flag is active.

Impact

Exploitation of this vulnerability leads to a memory leak, causing increased memory usage that is not released back to the system.

Remediation

Users can upgrade to the latest version of the Linux kernel where this vulnerability has been fixed. Instructions for downloading the patched version are available on the Linux kernel official website.

Added: Dec 8, 2025, 2:19 AM
Updated: Dec 8, 2025, 2:19 AM

Vulnerability Rating

Custom Algorithm
spread
9.0
impact
2.5
exploitability
5.3
remediation
7.7
relevance
1.3
threat
3.2
urgency
2.9
incentive
1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.