Linux Kernel VC4 DRM Memory Leak Vulnerability in Hang State Management

A memory leak vulnerability has been identified in the Linux kernel's VC4 Direct Rendering Manager (DRM) module. The issue arises in the handling of the 'hang state' for buffer objects (BOs). When a hang occurs, the BO array is allocated using kzalloc() but is never freed, leading to a memory leak. This vulnerability affects the Linux kernel stable tree.

Impact

The vulnerability causes a memory leak, which can lead to increased memory usage and potential exhaustion of system resources over time.

Reproduction

The vulnerability can be reproduced by inducing a hang state in the VC4 DRM module, which will trigger the allocation of the BO array. However, since the array is not freed in the current implementation, this will result in a memory leak.

Remediation

The vulnerability has been addressed in the Linux kernel. Users can apply the latest patches available in the Linux stable tree to mitigate this issue.