CVE-2023-52487

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.6.0-rc6+

Description The vulnerability is related to the net/mlx5e component in the Linux kernel. It is caused by a NULL pointer dereference when trying to remove a flow peer list head of a peer index that was never initialized. This issue can be triggered when the mlx5e tc del fdb peers flow() function calls mlx5e tc del fdb peer flow() for every possible peer index, attempting to remove the flow from eswitch instances that it has never peered with. The vulnerability can lead to a denial-of-service (DoS) condition.

To fix the issue, the Linux kernel has been updated to always remove the peer flow from the list, even when not releasing the last reference to it. This change ensures that the peer flow is properly removed, preventing the NULL pointer dereference and subsequent DoS condition.

Recommendations To resolve this issue, update the Linux kernel to version 6.6.0-rc6 or later. If an update is not possible, consider temporarily disabling the mlx5e tc del fdb peer flow() function until a patch is available. However, this is not a recommended long-term solution, as it may have unintended consequences on the system's functionality.