Linux Kernel Pinctrl Memory Leak Vulnerability in Pin Configuration Parser

A memory leak vulnerability has been identified in the Linux kernel's pin control subsystem, specifically within the pinconf_generic_parse_dt_config() function. This issue arises when the function parse_dt_cfg() fails, causing an early return that bypasses necessary cleanup operations. As a result, the configuration buffer (cfg) is not properly freed, leading to a memory leak. The vulnerability affects the stable versions of the Linux kernel.

Impact

Exploitation of this vulnerability leads to a memory leak, where allocated memory is not released, potentially causing increased memory usage and degradation of system performance over time.

Remediation

Users can upgrade to the latest version of the Linux kernel where this vulnerability has been addressed. Instructions for downloading the patched version are available on the Linux kernel official website.