Linux Kernel Fixed Rate Clock Unregistration Vulnerability in Net: Macb Component

A vulnerability exists in the Linux kernel's net: macb component, related to the improper management of fixed rate clocks. When additional resources are allocated using clk_register_fixed_rate(), they must be released with clk_unregister_fixed_rate(). Failure to do so results in a loss of those resources. This issue has been addressed in the Linux kernel stable tree.

Impact

The vulnerability could lead to resource leaks by failing to properly release allocated clock resources, potentially causing issues in resource management and system performance.

Reproduction

The vulnerability can be reproduced by adding a PCI wrapper for the Platform Driver in the net: macb component, and then allocating fixed rate clocks without properly unregistering them. This can be done by modifying the macb_probe function to include the new clock registration, and then omitting the corresponding unregistration in the macb_remove function.

Remediation

Users can apply the available patch in the Linux kernel stable tree to address this vulnerability.