Linux Kernel Memory: Device Leak Vulnerability in MTK SMI Common Probe

A vulnerability in the Linux kernel's memory management for MediaTek (MTK) SMI devices has been addressed. The issue involved improper handling of device references during the common probe process, which could lead to device leaks. This vulnerability was present in several versions of the Linux kernel.

Impact

The vulnerability could cause memory leaks by not properly releasing device references, potentially leading to increased memory usage and degradation of system performance.

Reproduction

The vulnerability can be reproduced by probing MTK SMI devices in a way that defers the probe process or during driver unbinding, without properly releasing the device references. This can be done by simulating late probe failures or unbinding the driver before the probe process is completed.

Remediation

Users can upgrade to the latest version of the Linux kernel where this vulnerability has been fixed. Instructions for downloading the patched version are available on the Linux kernel official website.