Linux Kernel Memory Leak Vulnerability in RAID 10 Module

A memory leak vulnerability has been identified in the Linux kernel's RAID 10 implementation. The issue arises in the 'raid10_run()' function, where the 'mddev->thread' is not properly freed if the 'setup_conf()' function succeeds but 'raid10_run()' fails before assigning the thread. This vulnerability affects the Linux kernel RAID 10 module in several versions.

Impact

The vulnerability leads to a memory leak, where allocated memory is not properly released, potentially causing increased memory usage and degradation of system performance over time.

Reproduction

To reproduce this vulnerability, load a RAID 10 configuration and allow the 'setup_conf()' function to succeed. Then, induce a failure in the 'raid10_run()' function before the 'mddev->thread' is set. This will create a scenario where the 'conf->thread' is not freed, causing a memory leak.

Remediation

The vulnerability has been addressed by modifying the 'raid10_run()' function to set 'mddev->thread' immediately after the 'setup_conf()' call, ensuring that the thread is properly managed even if an error occurs later in the function.