CVE-2022-49096

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to the version that includes the fix for the issue described.

Description A vulnerability in the Linux kernel has been resolved. The issue occurs when the rx/tx ring buffer size is changed, causing a kernel panic when acting XDP TX or XDP REDIRECT. This happens because the sfc driver misses reinitializing xdp queues after reallocating and reinitializing rx and tx queues. As a result, the kernel uses uninitialized tx queue->buffer, leading to a NULL pointer dereference. The estimated number of potentially affected devices worldwide is not specified. There is no information about real-world incidents where this issue was exploited.

Recommendations To resolve the issue, update the Linux kernel to a version that includes the fix. As a temporary workaround, consider disabling the XDP TX and XDP REDIRECT functionality until a patch is available. Restrict access to the vulnerable sfc driver to minimize the risk of exploitation. Avoid using the affected API endpoints, such as those related to efx xdp tx buffers and efx rx packet, until the issue is resolved.