Description
In the Linux kernel, the following vulnerability has been resolved:

wifi: ath11k: fix memory leaks in beacon template setup

The functions ath11k_mac_setup_bcn_tmpl_ema() and
ath11k_mac_setup_bcn_tmpl_mbssid() allocate memory for beacon templates
but fail to free it when parameter setup returns an error.

Since beacon templates must be released during normal execution, they
must also be released in the error handling paths to prevent memory
leaks.

Fix this by using unified exit paths with proper cleanup in the respective
error paths.

Compile tested only. Issue found using a prototype static analysis tool
and code review.
Published: 2026-06-24
Score: 5.5 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The ath11k Wi‑Fi driver in the Linux kernel contains a defect where memory allocated for beacon templates within ath11k_mac_setup_bcn_tmpl_ema() and ath11k_mac_setup_bcn_tmpl_mbssid() is not released when setup fails. This oversight causes a memory leak that can gradually exhaust kernel heap space, potentially degrading system performance or triggering out‑of‑memory conditions.

Affected Systems

The flaw resides in the ath11k driver component of the Linux kernel. Any system running a kernel version that includes the buggy beacon‑template logic is susceptible, including older mainline or custom builds that have not applied the recent patch commit. The CVE references a patch in the upstream kernel sources but no specific kernel version was listed in the advisory.

Risk and Exploitability

EPSS indicates that exploitation is unlikely, with a score less than 1%. The CVSS score of 5.5 reflects moderate severity. No known exploitation is currently reported and the CVE is not listed in the CISA KEV catalog. The memory leak can be triggered when beacon template setup fails; repeated failures may exhaust kernel memory, potentially causing out‑of‑memory conditions or system instability. While the vulnerability does not enable code execution, the resulting denial of service could affect availability of the system, particularly in long‑running deployments or those with high Wi‑Fi traffic.

Generated by OpenCVE AI on June 27, 2026 at 04:20 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the latest Linux kernel release that includes the ath11k memory‑leak fix (commit 5d63aa38d5ca85206d9699ffdd616b58780dba07). If upgrading is not feasible, backport the fix to your kernel source.
  • Disable or restrict the use of multiband beacon templates (MBSSID) if your deployment does not require them, thereby reducing exposure to the faulty code path.
  • Monitor kernel logs (dmesg, /var/log/kern.log) for memory allocation failures or out‑of‑memory events, and take corrective action such as reloading the ath11k module or rebooting when sustained memory growth is observed.
  • Ensure that Wi‑Fi configuration and firmware is sourced from trusted vendors to avoid triggering the flawed beacon‑template setup.

Generated by OpenCVE AI on June 27, 2026 at 04:20 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Sat, 27 Jun 2026 03:00:00 +0000

Type Values Removed Values Added
Weaknesses CWE-391

Sat, 27 Jun 2026 00:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-772
References
Metrics threat_severity

None

cvssV3_1

{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H'}

threat_severity

Low


Wed, 24 Jun 2026 21:30:00 +0000

Type Values Removed Values Added
Weaknesses CWE-391

Wed, 24 Jun 2026 17:15:00 +0000

Type Values Removed Values Added
Description In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: fix memory leaks in beacon template setup The functions ath11k_mac_setup_bcn_tmpl_ema() and ath11k_mac_setup_bcn_tmpl_mbssid() allocate memory for beacon templates but fail to free it when parameter setup returns an error. Since beacon templates must be released during normal execution, they must also be released in the error handling paths to prevent memory leaks. Fix this by using unified exit paths with proper cleanup in the respective error paths. Compile tested only. Issue found using a prototype static analysis tool and code review.
Title wifi: ath11k: fix memory leaks in beacon template setup
First Time appeared Linux
Linux linux Kernel
CPEs cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Vendors & Products Linux
Linux linux Kernel
References

Subscriptions

Linux Linux Kernel
cve-icon MITRE

Status: PUBLISHED

Assigner: Linux

Published:

Updated: 2026-06-24T16:30:46.011Z

Reserved: 2026-06-09T07:44:35.385Z

Link: CVE-2026-53113

cve-icon Vulnrichment

No data.

cve-icon NVD

No data.

cve-icon Redhat

Severity : Low

Publid Date: 2026-06-24T00:00:00Z

Links: CVE-2026-53113 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-06-27T04:30:11Z

Weaknesses
  • CWE-772

    Missing Release of Resource after Effective Lifetime