Linux Kernel Refcount Leak Vulnerability in LPDDR3 Timing Retrieval

A refcount leak vulnerability has been identified in the Linux kernel's memory management, specifically within the function responsible for retrieving LPDDR3 timing information. This issue arises because the function fails to properly manage the reference count of device tree nodes, which can lead to memory management problems. The vulnerability is present in several versions of the Linux kernel.

Impact

Exploitation of this vulnerability can lead to a refcount leak, causing potential memory management issues.

Reproduction

The vulnerability can be reproduced by calling the 'of_lpddr3_get_ddr_timings()' function without the corresponding 'of_node_put()' to decrease the reference count of the device tree node. This can be done by modifying the 'of_memory' driver to remove the reference count management when exiting the 'for_each_child_of_node()' iteration.

Remediation

Users can apply the latest patches available in the Linux kernel stable tree to address this vulnerability.