David Mosberger-Tan

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 6.8.0-rc1+ #117 Description: The vulnerability is related to a use-after-free issue in the `wilc netdev cleanup` function when cleaning up all interfaces. This can be triggered by removing the module or unbinding the device from the driver, and can cause a denial of service. The issue is due to netdevice unregistration during vif list traversal, which frees the netdevice object and the corresponding vif object. The next occurrence of the loop then tries to access the freed vif pointer, causing the use-after-free. To fix this issue, two mechanisms are used: navigating the list with `list for each entry safe` to safely modify the list, and waiting for the RCU grace period end after each vif removal to ensure it is safe to free the corresponding vif. Recommendations: To resolve this issue, update the Linux kernel to a version that includes the fix for this vulnerability. If updating is not possible, consider disabling the `wilc netdev cleanup` function or restricting access to the vulnerable module until a patch is available.