On 01/10/20 12:38 pm, Marcel Holtmann wrote: > Hi Anant, > >> When h5_close() gets called, the memory allocated for the hu gets >> freed only if hu->serdev doesn't exist. This leads to a memory leak. >> So when h5_close() is requested, close the serdev device instance and >> free the memory allocated to the hu entirely instead. >> >> Fixes: https://syzkaller.appspot.com/bug?extid=6ce141c55b2f7aafd1c4 >> Reported-by: syzbot+6ce141c55b2f7aafd1c4@xxxxxxxxxxxxxxxxxxxxxxxxx >> Tested-by: syzbot+6ce141c55b2f7aafd1c4@xxxxxxxxxxxxxxxxxxxxxxxxx >> Signed-off-by: Anant Thazhemadam <anant.thazhemadam@xxxxxxxxx> >> --- >> drivers/bluetooth/hci_h5.c | 8 ++++++-- >> 1 file changed, 6 insertions(+), 2 deletions(-) > patch has been applied to bluetooth-next tree. > > Regards > > Marcel Great! Thanks :) Thanks, Anant
