Linux Kernel KMS Surface Dirty Tracker Overwrite Vulnerability in VMWGFX Driver

A memory leak vulnerability has been identified in the Linux kernel's VMWGFX graphics driver. The issue arises from an improper handling of the Kernel Mode Setting (KMS) surface dirty tracker, which is overwritten, leading to a memory leak. This vulnerability affects the stable versions of the Linux kernel.

Impact

Exploitation of this vulnerability causes a memory leak, which can lead to increased memory usage and potential degradation of system performance over time.

Reproduction

The vulnerability can be reproduced by using the VMWGFX graphics driver in a Linux environment. When KMS surfaces are managed, the driver's handling of the dirty tracker will incorrectly overwrite existing data, causing a memory leak. This can be observed by monitoring memory usage over time, which will show an increase due to the leaked resources.

Remediation

Users can upgrade to the latest version of the Linux kernel where this vulnerability has been addressed. Instructions for downloading the patched version are available on the official Linux kernel website.