Linux Kernel Memory Leak Vulnerability in GPU Host1X Context Management

A memory leak vulnerability has been identified in the Linux kernel's GPU host1x context management. The issue arises because device names allocated by the 'dev_set_name()' function are not properly freed before the module is unloaded. This failure occurs because the reference count of the kobject, set during 'device_initialize()', is not decremented to zero. As a result, the allocated names cannot be released. The vulnerability affects the Linux kernel stable tree.

Impact

Exploitation of this vulnerability leads to a memory leak, where allocated device names are not properly released, potentially causing increased memory usage and degradation of system performance over time.

Reproduction

The vulnerability can be reproduced by adding context devices in the host1x GPU driver without properly managing the device lifecycle. When 'device_add()' fails, the reference count is not correctly dropped, leaving allocated names in memory. This can be observed by monitoring memory usage for leaks after unloading the module.

Remediation

The vulnerability has been addressed in the Linux kernel. Users should upgrade to the latest version where this issue has been fixed.