CVE-2024-50041

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 6.6.58

Description: The issue is related to a macvlan leak in the i40e driver, caused by concurrent access to vsi->mac filter hash. This leads to inconsistent state and potential memory leaks when multiple threads attempt to modify mac filter hash simultaneously. The patch addresses this by wrapping calls to i40e del mac filter() and zeroing vf->default lan addr.addr with spin lock/unlock bh(&vsi->mac filter hash lock), ensuring atomic operations and preventing concurrent access. Additionally, lockdep assert held(&vsi->mac filter hash lock) is added in i40e add mac filter() to catch similar issues in the future. The reproduction steps involve spawning VFs, configuring port vlan, triggering concurrent macvlan operations, and observing the potential memory leak and inconsistent state in mac filter hash.

Recommendations: To resolve the issue, update to Linux kernel version 6.6.58 or later. As a temporary workaround, consider disabling concurrent macvlan operations until the patch is applied. Restrict access to the i40e driver to minimize the risk of exploitation. Avoid triggering concurrent macvlan operations, such as adding and deleting portvlan and/or mac filters, until the issue is resolved.