Linux Kernel RapidIO Name Leak Vulnerability in rio_register_mport Function

A vulnerability in the Linux kernel's RapidIO subsystem could lead to a name leak in the rio_register_mport function. When the device_register function fails, the name set by dev_set_name needs to be released. The current implementation does not properly handle this error, potentially allowing for a name leak. The issue arises because the reference to the device is not released in the error path, preventing the name from being cleared during the cleanup process. This vulnerability affects several versions of the Linux kernel.

Impact

The vulnerability could lead to a name leak, where allocated names are not properly freed, potentially causing confusion or errors in device management.

Reproduction

To reproduce this vulnerability, register a RapidIO management port using the rio_register_mport function. If the device_register function returns an error, observe that the name allocated by dev_set_name is not freed, creating a name leak. This can be verified by checking the device management logs or by monitoring the device names for unreferenced entries.

Remediation

The vulnerability has been addressed in the Linux kernel. Users should upgrade to the latest version where this issue has been fixed.