CVE-2023-53102

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.2.0-rc5+

Description A vulnerability in the Linux kernel has been resolved. The issue is related to the ice qp dis() function, which intends to stop a given queue pair that is a target of xsk pool attach/detach. The function is broken in a way that txq irq is turned off after HW flush, which takes no effect. This can lead to a kernel NULL pointer dereference. The vulnerability can be triggered by starting xdpsock without loading xdp prog, running xdp rxq info with XDP TX action on the interface, starting traffic, and then terminating xdpsock.

Recommendations To fix this issue, call ice qvec dis irq() after ice vsi stop tx ring(). Additionally, remove the redundant ice clean rx ring() call, as it is handled in ice qp clean rings(). At the moment, there is no information about a newer version that contains a fix for this vulnerability.