Linux Kernel Memory Leak Vulnerability in DRM XE Subsystem

A memory leak vulnerability has been addressed in the Linux kernel's DRM XE subsystem, specifically within the 'xe_vm_madvise_ioctl' function. This issue arises when the 'check_bo_args_are_sane()' validation fails, leading to a failure to properly free allocated resources. The vulnerability is present in Linux kernel versions 6.18 and later.

Impact

Exploitation of this vulnerability could lead to a memory leak, where allocated resources are not properly released, potentially causing increased memory usage and degradation of system performance over time.

Reproduction

The vulnerability can be reproduced by invoking the 'xe_vm_madvise_ioctl' function with arguments that trigger a failure in the 'check_bo_args_are_sane()' validation. This will cause the function to exit without freeing allocated resources, leading to a memory leak.

Remediation

Users can upgrade to the latest version of the Linux kernel to address this vulnerability. The patch for this issue is included in the official Linux kernel repositories.