Linux Kernel ov772x I2C Driver Memory Leak Vulnerability

A memory leak vulnerability has been identified in the Linux kernel's ov772x I2C driver. This issue arises in the 'ov772x_probe' function, where the driver fails to release allocated resources if an error occurs during initialization. The memory leak was detected while testing the ov772x driver with a BPF mock device, which revealed unreferenced objects that had not been properly freed. The vulnerability affects several versions of the Linux kernel.

Impact

Exploitation of this vulnerability leads to a memory leak, where allocated memory is not properly released, potentially causing increased memory usage and degradation of system performance over time.

Reproduction

The vulnerability can be reproduced by loading the ov772x I2C driver and attaching it to a BPF mock device. This setup will trigger the memory leak by causing the driver to encounter an error during the probing process, which prevents it from freeing allocated resources.

Remediation

The vulnerability has been addressed in the Linux kernel. Users can upgrade to the latest version to mitigate this issue.