Linux Kernel PM/Devfreq HiSilicon Uncore OPP Handling Use-After-Free Vulnerability

A use-after-free vulnerability has been identified in the Linux kernel's PM/devfreq subsystem, specifically within the HiSilicon uncore frequency scaling driver. This issue arises from improper handling of Operating Performance Points (OPP), which can lead to resource management errors. The vulnerability affects several versions of the Linux kernel.

Impact

The vulnerability could potentially be exploited to create a use-after-free condition, which may lead to memory corruption and could be exploited to execute arbitrary code or cause a denial-of-service condition.

Reproduction

To reproduce this vulnerability, load the HiSilicon uncore frequency scaling driver in the Linux kernel's PM/devfreq subsystem. The vulnerability can be triggered by manipulating the OPP handling in a way that causes a use-after-free condition, such as by improperly managing the acquisition and release of OPP references during frequency scaling operations.

Remediation

Users can upgrade to the latest version of the Linux kernel where this vulnerability has been addressed. The specific commit that resolves this issue is 26dd44a40096468396b6438985d8e44e0743f64c.