CVE-2023-54090

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.15.0-48

Description The Linux kernel contains a flaw within the ixgbe driver related to handling XDP TX operations on systems with more than 64 CPUs. A kernel panic can occur due to an array-index-out-of-bounds error when the ixgbe determine xdp ring function is called. This issue arises from incorrect indexing of XDP TX rings, specifically when the number of CPUs exceeds 64. The root cause is related to the ixgbe xdp locking key variable, which is incorrectly decremented during certain operations, potentially leading to a zero value and subsequent errors. The ixgbe setup tc function, accessible via ethtool --set-channels, can also contribute to this issue by decrementing the ixgbe xdp locking key. The ixgbe xmit xdp ring function is involved in the error.

Recommendations Update to a version beyond 5.15.0-48.