Linux Kernel Memory Leak Vulnerability in RAID1 Component

A memory leak vulnerability has been identified in the Linux kernel's RAID1 component. The issue arises in the 'raid1_run()' function, which registers a thread using 'md_register_thread()'. If 'raid1_set_limits()' fails, the thread is not unregistered, leading to a memory leak of the 'md_thread' structure and the associated thread resources. The vulnerability has been addressed by adding 'md_unregister_thread()' to the error handling path, ensuring proper cleanup of the thread, similar to the error management in other parts of the function.

Impact

Exploitation of this vulnerability leads to a memory leak, where the 'md_thread' structure and its resources are not properly released, potentially causing increased memory usage and degradation of system performance over time.

Reproduction

The vulnerability can be reproduced by creating a RAID1 array and forcing the 'raid1_set_limits()' function to fail. This will cause the 'raid1_run()' function to exit without unregistering the previously registered thread, leading to a memory leak.

Remediation

Users can upgrade to the latest version of the Linux kernel where this vulnerability has been fixed. Instructions for upgrading the Linux kernel can be found in the official Linux documentation.