Linux Kernel NVMe Core Memory Leak Vulnerability in DH-CHAP Secret Store

A memory leak vulnerability has been identified in the Linux kernel's NVMe core component, specifically within the DH-CHAP secret storage function. This issue affects the stable versions of the Linux kernel. The vulnerability arises because the function fails to properly free allocated memory before returning, leading to a memory leak. The problem was revealed by the kernel's memory leak detector, which flagged unreferenced objects that had not been properly released.

Impact

Exploitation of this vulnerability leads to a memory leak, where allocated memory is not properly freed, potentially causing increased memory usage and degradation of system performance over time.

Reproduction

The vulnerability can be reproduced by writing to the 'dhchap_secret_store' of an NVMe controller. This can be done through the NVMe over Fabrics (NVMe-oF) subsystem, which supports DH-CHAP authentication. The 'check' command can be used to trigger the vulnerability, as it initiates a write operation that bypasses the proper memory management, leaving allocated memory unfreed.

Remediation

Users can upgrade to the latest version of the Linux kernel, where this vulnerability has been addressed. Instructions for upgrading the Linux kernel can be found in the official Linux documentation.