Volerion logoVolerion
Volerion logoVolerion

Linux Kernel Broadcom SBA RAID Driver Device Leak Vulnerability

Vulnerability

A vulnerability exists in the Linux kernel's Broadcom SBA RAID driver, specifically in the stable group. The issue arises during the probe process, where a reference to the mailbox device is not properly released on probe failures or when the driver is unbound. This oversight can lead to a resource leak.

Impact

Failing to release the reference to the mailbox device can cause a resource leak, potentially leading to increased memory usage or other resource exhaustion issues.

Reproduction

The vulnerability can be reproduced by probing a platform device that uses the Broadcom SBA RAID driver. During the probe process, if an error occurs or the driver is unbound, the reference to the mailbox device is not properly released, causing a device leak.

Remediation

Users can apply the latest patches available in the Linux kernel stable tree to address this vulnerability.

Added: Jan 31, 2026, 12:34 PM
Updated: Jan 31, 2026, 12:34 PM

Vulnerability Rating

Custom Algorithm
spread
9.0
impact
2.5
exploitability
3.4
remediation
7.7
relevance
2.5
threat
4.8
urgency
2.9
incentive
0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.