Linux Kernel vdpasim IOTLB Memory Leak Vulnerability

A memory leak vulnerability has been identified in the Linux kernel's vdpasim component, specifically in versions prior to the patch included in commit 0b7a04a30eef20e6b24926a45c0ce7906ae85bd6. The issue arises because, after a previous commit, vdpasim's I/O Memory Management Unit (IOMMU) was changed to an array of I/O Translation Lookaside Buffers (IOTLBs). The vulnerability allows memory mappings to be leaked when the IOTLBs are freed, as the current implementation only removes ranges from the first IOTLB instead of properly cleaning up each one individually.

Impact

Exploitation of this vulnerability leads to a memory leak, where unused memory is not properly released, potentially causing increased memory usage and degradation of system performance over time.

Remediation

Users can apply the patch available in the Linux kernel stable tree to address this vulnerability. The patch can be downloaded as part of the Linux source code snapshot corresponding to the commit 0b7a04a30eef20e6b24926a45c0ce7906ae85bd6.