CVE Catalog

CVE-2026-53113

Low risk· EPSS 5%
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.16%

5th percentile - higher than 5% of all known CVEs

Summary

In the Linux kernel, memory leaks were found in the ath11k driver during beacon template setup. Functions ath11k_mac_setup_bcn_tmpl_ema() and ath11k_mac_setup_bcn_tmpl_mbssid() allocate memory for beacon templates but fail to free it on parameter setup errors. The fix introduces unified exit paths with proper cleanup.

Risk Assessment

Memory leaks can gradually exhaust available system memory, potentially causing system instability or denial of service (DoS) on devices using Wi-Fi cards supported by the ath11k driver over time.

Recommendation

Immediately update the Linux kernel to a version containing the fix (commit with the solution). For production systems, apply the security patch after compatibility testing.

Original NVD description (English source)

In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: fix memory leaks in beacon template setup The functions ath11k_mac_setup_bcn_tmpl_ema() and ath11k_mac_setup_bcn_tmpl_mbssid() allocate memory for beacon templates but fail to free it when parameter setup returns an error. Since beacon templates must be released during normal execution, they must also be released in the error handling paths to prevent memory leaks. Fix this by using unified exit paths with proper cleanup in the respective error paths. Compile tested only. Issue found using a prototype static analysis tool and code review.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS