memory leak

The recently disclosed issue tied to CVE-2022-50418 — a memory-leak and lifecycle-handling defect in the ath11k wireless driver’s MHI interactions — is a textbook example of how subtle resource-management mistakes in kernel drivers produce outsized operational impact for Wi‑Fi hosts and embedded...

The Linux kernel received a targeted fix for a memory-leak bug in the AMDGPU DRM driver — tracked as CVE-2023-53370 — that corrects how fences associated with an MES (Micro-Engine Scheduler) queue are cleaned up during ring finalization, closing a local denial-of-service and resource-exhaustion...

A small but consequential memory‑management bug in the Linux kernel’s CIFS/SMB client — tracked as CVE‑2025‑40268 — has been fixed upstream; the vulnerability is a memory leak in smb3_fs_context_parse_param that can cause unreferenced kernel memory to accumulate when userland calls fsconfig...

Windows 11 users are suddenly facing a double squeeze: popular Chromium- and Electron-based apps — most notably Discord — are consuming far more RAM than many expect, and that problem is colliding with a memory market already strained by AI-driven demand and rising DRAM prices. What started as...

A memory-leak bug in the Linux kernel’s UBI driver — tracked as CVE‑2024‑25740 — allows repeated use of the UBI_IOCATT path to accumulate unreleased kernel objects because the kobject name (kobj->name) is not freed on error paths, producing a sustained or persistent availability impact that...

A subtle memory leak in the Linux kernel’s udmabuf driver — tracked as CVE-2024-56712 — has been closed by a small, surgical change to the export path that prevents orphaned dma_buf objects when file-descriptor assignment fails; the bug is low in severity but meaningful for systems that...

A subtle lifecycle bug in the Linux UFS platform driver — tracked as CVE-2024-57872 — can leave a host bus adapter (HBA) detached code path improperly cleaned up during ufshcd_pltfrm_remove, producing memory leaks and an availability risk for affected systems. The fix upstream ensures the SCSI...

Libssh contains a memory‑exhaustion defect in its key‑exchange handling (CVE‑2025‑8277) that can, under repeated rekeying attempts with incorrect KEX guesses, leak ephemeral key material and gradually exhaust client memory — a low‑severity but practical availability risk for any software that...

A newly cataloged weakness in GNU Binutils — tracked as CVE-2025-1152 — exposes a memory‑management bug in the linker’s xstrdup implementation that can leak allocated memory when processing crafted input, and while vendors rate its raw CVSS severity as low, the real operational risk centers on...

A creeping, low‑severity flaw in GNU Binutils — tracked as CVE‑2025‑1151 — has drawn attention because it exposes a persistent memory leak in the linker’s xmemdup implementation and because a public proof‑of‑concept is available; while the technical impact is limited, the operational risk to...

A subtle bug in the Linux kernel’s eBPF fentry attach path — tracked as CVE-2023-53221 — can leave behind allocated BPF trampoline images when an fentry attach fails, producing a persistent memory leak that, if abused at scale, can deny availability to services and systems; this behavior is...

A small reordering of error handling in the Linux kernel's Btrfs create_subvol path fixed a memory-management bug that could leak an internal "anon_dev" allocation and, in aggregate, cause sustained availability problems on affected systems — administrators should treat this as a local...

Microsoft’s advisory for CVE-2025-53719 describes an information‑disclosure bug in the Windows Routing and Remote Access Service (RRAS) caused by the use of an uninitialized resource, and administrators should treat any RRAS host exposed to untrusted networks as high priority for inspection and...

WhatsApp's recent transition from a Universal Windows Platform (UWP) application to a Progressive Web App (PWA) on Windows has sparked considerable discussion among users and developers alike. This shift marks a significant change in the application's architecture and user experience, prompting...

Windows Imaging Component (WIC), the core framework powering image decoding and editing across numerous Microsoft and third-party applications, faces growing scrutiny after the recent disclosure of CVE-2025-47980 — an information disclosure vulnerability with far-reaching security implications...

As of July 8, 2025, there is no publicly available information regarding a vulnerability identified as CVE-2025-49676 affecting Windows Routing and Remote Access Service (RRAS). It's possible that this CVE has not been disclosed or documented in public databases. However, several other...

For IT administrators and businesses deploying Windows Server 2025, the anticipation around the Resilient File System (ReFS) has been a blend of opportunity and frustration. On paper, ReFS stands as Microsoft’s resilient evolution of decades-old NTFS, promising transaction-consistent storage...

With Microsoft ending support for Windows 10 on October 14, 2025, millions of users face a pivotal decision: Should they upgrade to Windows 11, stick with tried-and-true hardware, or take their chances on unsupported machines? At the center of this crossroads lies a persistent question: how much...

Microsoft has recently released Windows 11 Build 26100.4482 (KB5060829) to Insiders in the Release Preview Channel, marking a significant step in the evolution of Windows 11 version 24H2. This update introduces a range of new features and improvements designed to enhance user experience, system...

Microsoft 365 users across the globe have once again found themselves grappling with accessibility problems affecting key productivity tools, notably Outlook and Teams. The latest incident, which surfaced in the early evening hours as reports flooded Downdetector and other monitoring platforms...