CVE-2024-53120

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.6.65

Description A null pointer dereference issue has been resolved in the Linux kernel. The issue occurs in the error flow of the mlx5 tc ct entry add rule() function, where the zone rule->attr is used without initialization. This can lead to a kernel NULL pointer dereference. The kernel log shows a BUG message with a RIP address of 0010:mlx5 tc ct entry add rule+0x2b1/0x2f0 [mlx5 core]. The call trace includes functions such as mlx5 tc ct block flow offload(), nf flow offload tuple(), and flow offload work handler().

Recommendations To resolve the issue, update to Linux kernel version 6.6.65 or later. As a temporary workaround, consider disabling the mlx5 tc ct entry add rule() function until a patch is available. Restrict access to the vulnerable module mlx5 core to minimize the risk of exploitation. Avoid using the zone rule->attr variable in the affected API endpoint until the issue is resolved.