Linux Kernel Refcount Leak Vulnerability in DDR Timing Retrieval Function

A refcount leak vulnerability has been identified in the Linux kernel's memory management, specifically within the 'of_get_ddr_timings' function. This issue arises when the function iterates over child nodes in the device tree, failing to properly manage the reference count of the nodes. The vulnerability is present in the stable versions of the Linux kernel.

Impact

Exploitation of this vulnerability can lead to a refcount leak, where the reference count of a resource is not properly decremented, potentially causing memory management issues.

Reproduction

The vulnerability can be reproduced by calling the 'of_get_ddr_timings' function with a device node that has child nodes. The function will iterate over the child nodes but will not properly release the reference for each node, leading to a refcount leak.

Remediation

The vulnerability has been addressed by adding the 'of_node_put()' function to properly manage the reference count when exiting the child node iteration. Users should upgrade to the latest version of the Linux kernel where this fix has been applied.