Linux Kernel LogicVC Display Controller Device Node Reference Leak Vulnerability

A device node reference leak vulnerability has been identified in the Linux kernel's LogicVC display controller driver. The issue arises in the 'logicvc_drm_config_parse()' function, which fails to release a reference to the 'layers' node after retrieving it. This oversight can lead to a memory leak, as the unreferenced node remains allocated but inaccessible. The vulnerability affects the Linux kernel stable tree.

Impact

The vulnerability causes a memory leak by failing to release references to device nodes, which can lead to increased memory usage and potential exhaustion of available memory resources.

Reproduction

The vulnerability can be reproduced by invoking the 'logicvc_drm_config_parse()' function within the LogicVC display controller driver. The function will attempt to access the 'layers' node without properly releasing the reference, causing a leak.

Remediation

The vulnerability has been addressed by modifying the 'logicvc_drm_config_parse()' function to use the '__free(device_node)' cleanup attribute. This change ensures that the reference to the 'layers' node is properly released when the variable goes out of scope.