Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The issue is related to a memory leak in the bnx2 init one handler implementation in the Linux kernel's drivers/net/ethernet/broadcom/bnx2.ko module. An attacker, acting locally, can exploit this issue to cause a denial of service in the operating system by connecting a QLogic bnx2 network device and reading data that indicates the device has stopped. The bnx2 init one function in bnx2.c calls bnx2 init board, which allocates memory in bp->temp stats blk, but this memory is not freed in case of an error.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.