Linux Kernel IOMMU Group Memory Leak Vulnerability

A vulnerability in the Linux kernel's IOMMU (Input-Output Memory Management Unit) implementation can lead to a memory leak. This issue arises in the 'iommu_group_alloc()' function, where the 'iommu_group_create_file()' calls can fail, causing the allocated 'iommu_group' to be leaked. The vulnerability has been addressed by modifying the error handling to properly destroy the 'iommu_group' in case of a failure. This vulnerability affects the Linux kernel stable tree.

Impact

The vulnerability can cause a memory leak by failing to properly release an allocated IOMMU group when an error occurs, potentially leading to increased memory usage and degradation of system performance over time.

Reproduction

The vulnerability can be reproduced by triggering a failure in the 'iommu_group_create_file()' function while allocating an IOMMU group. This can be done using the kselftest framework's IOMMU tests, specifically the 'iommufd_fail_nth' test, which is designed to simulate such a failure and expose the memory leak.

Remediation

Users can upgrade to the latest version of the Linux kernel where this vulnerability has been fixed. Instructions for downloading the patched version are available on the Linux kernel's official website.