Linux Kernel JFFS2 Memory Leak Vulnerability

A memory leak vulnerability has been identified in the Linux kernel's JFFS2 file system. When the function 'jffs2_iget()' or 'd_make_root()' in 'jffs2_do_fill_super()' encounters an error, it fails to release resources allocated during the file system initialization. This oversight leads to unreferenced objects remaining in memory, as reported by the kernel's memory leak detector. The leaked memory includes 64-byte and 64-kilobyte objects, which are not freed, causing a gradual increase in memory usage that could impact system performance.

Impact

Exploitation of this vulnerability leads to a memory leak, where allocated resources are not properly released, potentially causing increased memory usage and degrading system performance over time.

Remediation

To address this vulnerability, the 'jffs2_sum_exit()' function should be called to release the resources that are not being freed, as indicated in the kmemleak report.