Linux Kernel Samsung DSIM Bridge Memory Leak Vulnerability

A memory leak vulnerability has been identified in the Samsung DSI bridge implementation of the Linux kernel. The issue arises in the 'samsung_dsim_host_attach()' function, where the 'drm_bridge_add()' function is called to add a bridge. If the subsequent calls to 'samsung_dsim_register_te_irq()' or 'pdata->host_ops->attach()' fail, the function exits without removing the bridge, leading to a memory leak. This vulnerability affects the Linux kernel stable tree.

Impact

The vulnerability causes a memory leak, which can lead to increased memory usage and potential exhaustion of system resources over time.

Reproduction

The vulnerability can be reproduced by attaching a Samsung DSI bridge in a scenario where the 'samsung_dsim_register_te_irq()' or 'pdata->host_ops->attach()' functions fail after the bridge has been added. This failure can be simulated by modifying the host attachment process to introduce an error after the bridge is added but before it is properly detached.

Remediation

The vulnerability has been addressed by adding error handling to ensure that the bridge is removed in all error scenarios. Users should update to the latest version of the Linux kernel where this fix has been applied.