Linux Kernel Use-After-Free Vulnerability in ASoC Core

A use-after-free vulnerability has been identified in the Linux kernel's ASoC (ALSA System on Chip) core. This issue arises in the 'snd_soc_exit()' function, where the 'soc_dummy_dev' device is unregistered twice. The vulnerability was reported by KASAN (Kernel Address Sanitizer), indicating a read of size 8 from a freed memory address, which could potentially be exploited to cause memory corruption or arbitrary code execution.

Impact

Exploitation of this vulnerability leads to a use-after-free condition, which can commonly be exploited to execute arbitrary code or cause a denial-of-service by crashing the system.

Reproduction

The vulnerability can be reproduced by loading a module that registers a platform device with the ASoC core. If the module is then removed while the ASoC core is still active, the 'snd_soc_exit()' function will attempt to unregister the device a second time, leading to a use-after-free condition.

Remediation

Users should ensure they are using a patched version of the Linux kernel where this vulnerability has been addressed.