Linux Kernel MPU-3050 Gyroscope Driver Interrupt Handler Resource Leak Vulnerability

A resource leak vulnerability has been identified in the Linux kernel's MPU-3050 gyroscope driver. The issue arises in the interrupt handling process, where the interrupt request is not properly released if the function 'iio_trigger_register()' fails. This oversight can lead to resource mismanagement, as the allocated interrupt remains unfreed. The vulnerability was detected by the static analysis tool Smatch, which flagged the issue in the 'mpu3050_trigger_probe()' function.

Impact

The vulnerability can cause a resource leak by not releasing the interrupt handler when an error occurs, potentially leading to degraded system performance or stability.

Reproduction

The vulnerability can be reproduced by probing the MPU-3050 gyroscope driver and simulating a failure in the 'iio_trigger_register()' function. This will trigger the interrupt handler to be set up but not released, creating a resource leak. The Smatch tool can be used to detect this unfreed interrupt request, highlighting the vulnerability.

Remediation

The vulnerability has been addressed in the official Linux kernel repository. Users can apply the latest patches available in the Linux kernel stable tree to mitigate this issue.