Linux Kernel ExFAT Refcount Leak Vulnerability

A refcount leak vulnerability has been identified in the Linux kernel's ExFAT file system implementation. The issue arises in the 'exfat_find' function, which improperly manages reference counts related to the 'exfat_get_dentry_set' function. When 'exfat_get_dentry_set' is called successfully, it increases the reference count of 'es->bh'. To maintain consistency, 'exfat_put_dentry_set' must be called afterward. The vulnerability has been addressed by relocating two checks to prevent potential reference count leaks. This issue affects the Linux kernel stable tree.

Impact

The vulnerability could lead to a reference count leak, which may cause memory management issues such as use-after-free vulnerabilities or memory corruption.

Remediation

Users can upgrade to the latest version of the Linux kernel where this vulnerability has been patched. Instructions for downloading the updated kernel can be found on the official Linux kernel website.