Linux Kernel SPI Controller Use-After-Free Vulnerability

A use-after-free vulnerability has been addressed in the Linux kernel's SPI controller registration process. This issue arises when the allocation of per-CPU statistics fails, leading to a premature release of driver resources while still being registered. The flaw can cause unclocked access to registers, potentially allowing for exploitation. The vulnerability affects the Linux kernel SPI driver in versions prior to the fix.

Impact

The vulnerability could be exploited to create a use-after-free condition, leading to potential memory corruption or arbitrary code execution.

Reproduction

The vulnerability can be reproduced by registering an SPI controller while simulating a failure in the allocation of per-CPU statistics. This can be done by modifying the SPI controller's registration process to introduce an allocation failure, which will trigger the use-after-free condition.

Remediation

Users can upgrade to the latest version of the Linux kernel where this vulnerability has been fixed. The specific commit addressing this issue is available in the Linux kernel stable tree.