Linux Kernel Tegra Clock Driver Memory Leak Vulnerability

A memory leak vulnerability has been identified in the Linux kernel's Tegra clock driver for the Tegra124 EMC. The issue arises because certain memory allocations are not properly freed in the error handling path, leading to potential memory leaks. This vulnerability affects the Linux kernel stable tree.

Impact

The vulnerability can lead to a memory leak, where allocated memory is not properly released, potentially causing increased memory usage and degradation of system performance over time.

Reproduction

The vulnerability can be reproduced by loading the Tegra124 EMC clock driver and inducing an error during the timing loading process from the device tree. The error handling path will not free the allocated memory for the 'tegra' structure, causing a memory leak. This can be done by simulating a failure in the 'load_one_timing_from_dt' function, which handles the timing data for the clock driver.

Remediation

The vulnerability has been addressed in the Linux kernel. Users can upgrade to the latest version of the stable Linux kernel to apply the fix.