Linux Kernel TIPC Memory Leak Vulnerability in Message Transmission

Vulnerability

A memory leak vulnerability has been identified in the Linux kernel's TIPC (Transparent Inter-Process Communication) subsystem. The issue arises in the 'tipc_link_xmit' function, which handles the transmission of system-importance messages. When the backlog transmit queue for these messages becomes overloaded, 'tipc_link_xmit' returns an 'ENOBUFS' error. However, the function does not clear the socket buffer (skb) list, leading to a memory leak as new skb allocations fail. This vulnerability affects several versions of the Linux kernel.

Impact

Exploitation of this vulnerability leads to a memory leak, causing failures when allocating new socket buffers. This can result in degraded system performance or instability, as the memory leak consumes resources without being released.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel TIPC Memory Leak Vulnerability in Message Transmission

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating