Linux kernel mt76 WiFi driver memory leak in skb allocation
CVE-2026-53102 Published on June 24, 2026
wifi: mt76: Fix memory leak after mt76_connac_mcu_alloc_sta_req()
In the Linux kernel, the following vulnerability has been resolved:
wifi: mt76: Fix memory leak after mt76_connac_mcu_alloc_sta_req()
mt76_connac_mcu_alloc_sta_req() allocates an skb which is expected to
be freed eventually by mt76_mcu_skb_send_msg(). However, currently if
an intermediate function fails before sending, the allocated skb is
leaked.
Specifically, mt76_connac_mcu_sta_wed_update() and
mt76_connac_mcu_sta_key_tlv() may fail, leading to an immediate memory
leak in the error path.
Fix this by explicitly freeing the skb in these error paths.
Commit 7c0f63fe37a5 ("wifi: mt76: mt7996: fix memory leak on
mt7996_mcu_sta_key_tlv error") made a similar change.
Compile tested only. Issue found using a prototype static analysis tool
and code review.
Products Associated with CVE-2026-53102
Want to know whenever a new CVE is published for Linux Kernel? stack.watch will email you.
Affected Versions
Linux:- Version 6683d988089ce0e80bd859a9493333b6b272420e and below eb466406d2094deefadc2cd6ddb4f6eeb086d1b4 is affected.
- Version 6683d988089ce0e80bd859a9493333b6b272420e and below c41075ce8cf05ed8c0e7b7efef000dce548ffc42 is affected.
- Version 5.18 is affected.
- Before 5.18 is unaffected.
- Version 7.0.10, <= 7.0.* is unaffected.
- Version 7.1, <= * is unaffected.