CVE-2026-53113
Received Received - Intake
Memory Leak in Linux Kernel Ath11k WiFi Driver

Publication date: 2026-06-24

Last updated on: 2026-06-24

Assigner: kernel.org

Description
In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: fix memory leaks in beacon template setup The functions ath11k_mac_setup_bcn_tmpl_ema() and ath11k_mac_setup_bcn_tmpl_mbssid() allocate memory for beacon templates but fail to free it when parameter setup returns an error. Since beacon templates must be released during normal execution, they must also be released in the error handling paths to prevent memory leaks. Fix this by using unified exit paths with proper cleanup in the respective error paths. Compile tested only. Issue found using a prototype static analysis tool and code review.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-06-24
Last Modified
2026-06-24
Generated
2026-06-25
AI Q&A
2026-06-24
EPSS Evaluated
N/A
NVD
CVE-2026-53113
EUVD
EUVD-2026-38981
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
linux linux_kernel *
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-UNKNOWN
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability exists in the Linux kernel's wifi component, specifically in the ath11k driver. The functions ath11k_mac_setup_bcn_tmpl_ema() and ath11k_mac_setup_bcn_tmpl_mbssid() allocate memory for beacon templates but do not free this memory if an error occurs during setup. This leads to memory leaks because the allocated memory is not properly released in error handling paths.

The issue was fixed by implementing unified exit paths that ensure proper cleanup of allocated memory even when errors occur.

Impact Analysis

The impact of this vulnerability is primarily related to memory leaks in the Linux kernel's wifi driver. Memory leaks can cause increased memory usage over time, potentially leading to degraded system performance or instability.

In environments where the affected driver is used extensively, this could result in resource exhaustion, requiring system reboots or causing unexpected behavior.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-53113. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart