Linux Kernel CPUFreq Driver Use-After-Free Vulnerability in DaVinci Platform

A use-after-free vulnerability has been identified in the Linux kernel's CPU frequency driver for the DaVinci platform. This issue arises because the driver's remove function frees clock resources before unregistering the driver. If a CPU frequency callback is invoked just prior to the unregistration, it may inadvertently use the freed clock resources, leading to potential instability or unexpected behavior.

Impact

Exploitation of this vulnerability could result in a use-after-free condition, where freed memory is accessed, potentially leading to memory corruption or other undefined behavior.

Reproduction

To reproduce this vulnerability, load the DaVinci CPU frequency driver and ensure that a callback is triggered before the driver is unregistered. This can be done by manually invoking CPU frequency scaling operations while the driver is in the process of being removed.

Remediation

The vulnerability has been addressed in the Linux kernel. Users should upgrade to the latest version where this issue has been fixed.