Linux Kernel I2C TW9906 Video Decoder Memory Leak Vulnerability

A memory leak vulnerability has been identified in the Linux kernel's TW9906 video decoder I2C driver. The issue arises in the 'tw9906_probe()' function, where memory allocated for the V4L2 control handler is not properly released in certain error scenarios. This oversight can lead to unnecessary memory consumption.

Impact

Exploitation of this vulnerability can cause a memory leak, where allocated memory is not freed, potentially leading to increased memory usage and degradation of system performance over time.

Reproduction

The vulnerability can be reproduced by triggering an error in the 'tw9906_probe()' function after the V4L2 control handler has been initialized. This can be done by simulating a failure in the 'write_regs()' function, which would cause the probe function to return an error without freeing the allocated control handler memory.

Remediation

The vulnerability has been addressed by modifying the 'tw9906_probe()' function to include a call to 'v4l2_ctrl_handler_free()' on the control handler in the error path, ensuring that allocated memory is properly released. Users should update to the latest version of the Linux kernel where this fix has been applied.