Linux Kernel Amlogic SPISG Driver Memory Leak Vulnerability

A memory leak vulnerability has been identified in the Amlogic SPISG driver of the Linux kernel. The issue arises in the 'aml_spisg_probe()' function, where the SPI controller is allocated but not properly released in certain error scenarios. This oversight causes a memory leak whenever the driver fails to initialize after the allocation. The vulnerability affects the Linux kernel stable tree.

Impact

The vulnerability leads to a memory leak, causing increased memory usage that is not released back to the system.

Reproduction

The vulnerability can be reproduced by loading the Amlogic SPISG driver in a scenario where the 'aml_spisg_probe()' function encounters an error after allocating the SPI controller. This can be done by simulating conditions that cause the probe function to fail, such as interrupt handling errors or regmap initialization failures.

Remediation

The vulnerability has been addressed by modifying the driver to use 'devm_spi_alloc_host()' and 'devm_spi_alloc_target()' for memory allocation. This change ensures that the allocated resources are properly managed and released, preventing the memory leak.