Linux Kernel Panel ID Info Leak Vulnerability in DRM/EDID Handling

A vulnerability in the Linux kernel's handling of Display Data Channel (DDC) information, specifically within the Direct Rendering Manager (DRM) and Extended Display Identification Data (EDID) components, has been addressed. This vulnerability involved an information leak that occurred when the system failed to retrieve the panel ID. The issue arose because the transfer buffer was not properly cleared before attempting to fetch the EDID, leading to the unintentional disclosure of kernel memory (slab data) in the logs. Such errors could leave the buffer in its previous state, allowing sensitive information to be logged and potentially exploited.

Impact

The vulnerability could lead to an unintentional information leak, where sensitive slab data is exposed in the system logs. This could be exploited to gain insights into the kernel's memory management and potentially facilitate further attacks.