In the Linux kernel, the following vulnerability has been resolved:
media: go7007: fix a memleak in go7007loadencoder
In go7007loadencoder, bounce(i.e. go->boot_fw), is allocated without a deallocation thereafter. After the following call chain:
saa7134go7007init |-> go7007bootencoder |-> go7007loadencoder |-> kfree(go)
go is freed and thus bounce is leaked.