A memory leak in the rsi_send_beacon() function in drivers/net/wireless/rsi/rsi_91x_mgmt.c in the Linux kernel through 5.3.11 allows attackers to cause a denial of service (memory consumption) by triggering rsi_prepare_beacon() failures, aka CID-d563131ef23c.
The product does not sufficiently track and release allocated memory after it has been used, which slowly consumes remaining memory.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Linux_kernel | Linux | 4.14 (including) | 4.14.159 (excluding) |
Linux_kernel | Linux | 4.15 (including) | 4.19.89 (excluding) |
Linux_kernel | Linux | 4.20 (including) | 5.3.16 (excluding) |
Linux_kernel | Linux | 5.4.0 (including) | 5.4.3 (excluding) |