Linux Kernel Panthor DRM Uninitialized Memory Vulnerability

A use-after-free vulnerability has been identified in the Linux kernel's Panthor Direct Rendering Manager (DRM) component. This issue arises when the Memory Management Unit (MMU) is inactive, causing the 'panthor_vm_unmap_range()' function to return an error. The vulnerability occurs because the page table is not properly updated, leaving a virtual address node in the DRM memory manager. This oversight can lead to a use-after-free condition when adjacent nodes are removed from the DRM tree. The problem has been addressed by ensuring that the cleanup process completes without leaving nodes improperly managed, thus preventing potential exploitation.

Impact

Exploitation of this vulnerability can lead to a use-after-free condition, which may be exploited to execute arbitrary code or cause a denial-of-service by crashing the system.

Remediation

Users can upgrade to the latest version of the Linux kernel where this vulnerability has been fixed. Instructions for downloading the patched version are available on the Linux kernel's official website.