Memory leaks in drivers/net/wireless/ath/ath9k/htc_hst.c in the Linux kernel through 5.3.11 allow attackers to cause a denial of service (memory consumption) by triggering wait_for_completion_timeout() failures. This affects the htc_config_pipe_credits() function, the htc_setup_complete() function, and the htc_connect_service() function, aka CID-853acf7caf10.
4.4.0-190.2204.4.0-1114.1274.15.0-1083.87~16.04.14.15.0-1096.106~16.04.14.15.0-1084.95~16.04.14.15.0-118.119~16.04.14.10.0-14.16~16.04.14.10.0-19.21~16.04.14.10.0-20.22~16.04.14.10.0-21.23~16.04.14.10.0-22.24~16.04.14.10.0-24.28~16.04.14.10.0-26.30~16.04.14.11.0-13.19~16.04.14.11.0-14.20~16.04.14.13.0-16.19~16.04.3+13 more4.4.0-1080.874.15.0-1054.58~16.04.14.4.0-1139.148Exploitability
AV:LAC:LPR:NUI:NScope
S:UImpact
C:NI:NA:LCVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L