Linux Kernel DRM XE DMA-Buf Attachment Leak Vulnerability

A vulnerability exists in the Linux kernel's Direct Rendering Manager (DRM) for Intel GPUs, specifically within the XE driver. The issue arises in the 'xe_gem_prime_import()' function, where a failure in 'xe_dma_buf_init_obj()' does not properly detach a DMA buffer attachment, leading to a resource leak. This vulnerability affects the Linux kernel stable tree.

Impact

The vulnerability causes a memory leak by failing to release a DMA buffer attachment when an error occurs, potentially leading to increased memory usage and degradation of system performance over time.

Reproduction

The vulnerability can be reproduced by importing a DMA buffer using the 'xe_gem_prime_import()' function in the Intel XE DRM driver. If the 'xe_dma_buf_init_obj()' function fails, the DMA buffer attachment is not detached, creating a leak. This scenario can be triggered by simulating a failure in the DMA buffer initialization process.

Remediation

Users can upgrade to the latest version of the Linux kernel where this vulnerability has been addressed. The fixed version is included in the Linux kernel stable tree.