Navid Emamdoost

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions through 5.3.11 **Description** The issue is related to two memory leaks in the `mwifiex pcie init evt ring()` function, which can lead to a denial of service due to memory consumption. This occurs when `mwifiex map pci memory()` failures are triggered. The problem is associated with uncontrolled resource expenditure. **Recommendations** For Linux kernel versions through 5.3.11, update to a version that contains a fix for this issue to prevent memory leaks and potential denial of service.

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to 5.3.9 **Description** A memory leak in the `sdma init()` function in drivers/infiniband/hw/hfi1/sdma.c allows attackers to cause a denial of service (memory consumption) by triggering `rhashtable init()` failures. The issue is disputed as not a vulnerability because `rhashtable init()` can only fail if it is passed invalid values in the second parameter's struct, but when invoked from `sdma init()`, it is a pointer to a static const struct, so an attacker could only trigger failure if they could corrupt kernel memory. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.