CVE-2024-56624

In the Linux kernel, the following vulnerability has been resolved:<br /> <br /> iommufd: Fix out_fput in iommufd_fault_alloc()<br /> <br /> As fput() calls the file-&gt;f_op-&gt;release op, where fault obj and ictx are<br /> getting released, there is no need to release these two after fput() one<br /> more time, which would result in imbalanced refcounts:<br /> refcount_t: decrement hit 0; leaking memory.<br /> WARNING: CPU: 48 PID: 2369 at lib/refcount.c:31 refcount_warn_saturate+0x60/0x230<br /> Call trace:<br /> refcount_warn_saturate+0x60/0x230 (P)<br /> refcount_warn_saturate+0x60/0x230 (L)<br /> iommufd_fault_fops_release+0x9c/0xe0 [iommufd]<br /> ...<br /> VFS: Close: file count is 0 (f_op=iommufd_fops [iommufd])<br /> WARNING: CPU: 48 PID: 2369 at fs/open.c:1507 filp_flush+0x3c/0xf0<br /> Call trace:<br /> filp_flush+0x3c/0xf0 (P)<br /> filp_flush+0x3c/0xf0 (L)<br /> __arm64_sys_close+0x34/0x98<br /> ...<br /> imbalanced put on file reference count<br /> WARNING: CPU: 48 PID: 2369 at fs/file.c:74 __file_ref_put+0x100/0x138<br /> Call trace:<br /> __file_ref_put+0x100/0x138 (P)<br /> __file_ref_put+0x100/0x138 (L)<br /> __fput_sync+0x4c/0xd0<br /> <br /> Drop those two lines to fix the warnings above.