Linux Kernel Raspberry Pi Firmware Memory Leak Vulnerability

A memory leak vulnerability has been identified in the Linux kernel's Raspberry Pi firmware handling. The issue arises in the 'rpi_firmware_probe()' function, where the 'fw' variable is not properly freed if 'mbox_request_channel()' fails. This oversight can lead to a memory leak. The vulnerability affects the Linux kernel stable tree.

Impact

The vulnerability can cause a memory leak, potentially leading to increased memory usage and degradation of system performance over time.

Reproduction

To reproduce this vulnerability, load the Raspberry Pi firmware driver in the Linux kernel. During the 'rpi_firmware_probe()' process, simulate a failure in the 'mbox_request_channel()' function. Observe that the 'fw' variable is not released, causing a memory leak.

Remediation

The vulnerability has been addressed by modifying the error handling in the 'rpi_firmware_probe()' function to include a call to 'kfree()' for the 'fw' variable, ensuring that it is properly freed in case of an error.