Linux Kernel Refcount Leak Vulnerability in HDMI Audio Driver

Vulnerability

A refcount leak vulnerability has been identified in the Linux kernel's HDMI audio driver for i.MX platforms. The issue arises in the 'imx_hdmi_probeof_find_device_by_node()' function, where a device reference is taken but not properly released. This leak occurs because the function 'devm_kzalloc()' can fail, leaving the reference unreturned, which could lead to memory management issues.

Impact

The vulnerability causes a memory management flaw by leaking device references, which can lead to improper resource handling or exhaustion.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.0

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.0

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Refcount Leak Vulnerability in HDMI Audio Driver

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating