CVE-2024-53088

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A race condition in the i40e driver leads to MAC/VLAN filters becoming corrupted and leaking. This issue occurs under heavy load when multiple threads are concurrently modifying MAC/VLAN filters by setting mac and port VLAN. The problem arises when one thread allocates a filter and another thread concurrently frees it, causing subsequent corruption when the i40e service task() calls i40e sync vsi filters() and refers to the already freed filter memory. To reproduce the issue, spawn multiple VFs, apply a concurrent heavy load by changing MAC addresses and port VLANs, and observe errors in dmesg. The fix involves implementing a new intermediate filter state, I40E FILTER NEW SYNC, to prevent filters from being deleted directly from the hash list.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.