Memory leaks in drivers/net/wireless/ath/ath9k/htchst.c in the Linux kernel through 5.3.11 allow attackers to cause a denial of service (memory consumption) by triggering waitforcompletiontimeout() failures. This affects the htcconfigpipecredits() function, the htcsetupcomplete() function, and the htcconnect_service() function, aka CID-853acf7caf10.