CVE-2026-53102 | In the Linux kernel, the following vulnerability has been re…

Description

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: Fix memory leak after mt76_connac_mcu_alloc_sta_req() mt76_connac_mcu_alloc_sta_req() allocates an skb which is expected to be freed eventually by mt76_mcu_skb_send_msg(). However, currently if an intermediate function fails before sending, the allocated skb is leaked. Specifically, mt76_connac_mcu_sta_wed_update() and mt76_connac_mcu_sta_key_tlv() may fail, leading to an immediate memory leak in the error path. Fix this by explicitly freeing the skb in these error paths. Commit 7c0f63fe37a5 ("wifi: mt76: mt7996: fix memory leak on mt7996_mcu_sta_key_tlv error") made a similar change. Compile tested only. Issue found using a prototype static analysis tool and code review.

Metadata

CVE ID: CVE-2026-53102
State: PUBLISHED
Assigner: Linux
Reserved: 2026-06-09 07:44 UTC
Published: 2026-06-24 16:30 UTC
Last updated: 2026-06-24 16:30 UTC
Vendor / Product: Linux / Linux
Sources: cve.org · NVD

Severity & Metrics

No CVSS data available.

Affected products (2)

Vendor	Product	Platform	Versions
Linux	Linux	—	6683d988089ce0e80bd859a9493333b6b272420e < eb466406d2094deefadc2cd6ddb4f6eeb086d1b4, 6683d988089ce0e80bd859a9493333b6b272420e < c41075ce8cf05ed8c0e7b7efef000dce548ffc42
Linux	Linux	—	5.18, 0 < 5.18, 7.0.10 ≤ 7.0., 7.1 ≤

References (2)