CVE-2023-53347

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A flaw exists in the Linux kernel's net/mlx5 component related to the handling of E-switch pairing during uplink un/load APIs. Specifically, when transitioning a device from switchdev mode to legacy mode, the E-switch is unpaired before the uplink vport is unloaded. Conversely, during device removal or reload, the uplink vport is unloaded before the E-switch is unpaired. This sequence can lead to a kernel-oops when using VF LAG, where tc fdb flows are duplicated, and a pointer to the duplicated flow is maintained instead of the peer flow. During module unload, if the peer device is removed first, the peer net-dev is destroyed, leading to a null pointer dereference when attempting to unpair from the original device. The vulnerable function is mlx5e tc del fdb flow.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.