Linux Kernel Slimbus Qcom-NGD Probe Error Path Resource Cleanup Vulnerability

A vulnerability exists in the Linux kernel's Slimbus Qcom-NGD controller driver, specifically in the probe error handling process. When the probe function encounters an error, it fails to properly clean up resources that were previously allocated, leading to warnings during the probe deferral process. These warnings indicate that a notifier callback had already been registered, suggesting a potential issue with resource management. The vulnerability has been addressed by adding a proper error handling path in the probe function to release allocated resources and unregister any previously registered notifiers.

Impact

The vulnerability could lead to resource leaks and improper management of notifier registrations, which may cause issues in the device's operation or driver behavior.

Reproduction

The vulnerability can be reproduced by loading the Slimbus Qcom-NGD controller driver on a Linux kernel version that is affected by this issue. During the driver's probe process, induce a failure that triggers the error handling path. Observe the resulting warnings about the notifier callback being improperly managed, indicating that the error path did not clean up resources as required.

Remediation

Users can upgrade to the latest stable version of the Linux kernel, where this vulnerability has been fixed. Instructions for downloading the latest version can be found on the official Linux kernel website.