CVE-2022-50041

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.19.0-rc6+

Description A vulnerability in the Linux kernel has been resolved, which was causing a call trace with a null VSI during VF reset. The issue occurred during stress tests with attaching and detaching VF from KVM and simultaneously changing VFs spoofcheck and trust. The vulnerability was related to the ice reset vf function, which is responsible for disabling VF's Tx/Rx queues when VF is disabled. However, when VF is already removed, there is no need to reset or disable queues, making the WARN ON() check unnecessary and causing a call trace.

Recommendations For Linux kernel versions prior to 5.19.0-rc6+, remove the WARN ON() check from the ice reset vf function to prevent the call trace. Additionally, add a "VF is already removed" message in the dev dbg() function to provide more informative debugging output. As a temporary workaround, consider disabling the ice reset vf function until a patch is available.