CVE-2022-48690

2024-05-0318:15:08

Linux

web.nvd.nist.gov

linux kernel

ice vulnerability

dma mappings

rx buffers

bpf program

xsk pools

AI Score

6.5

Confidence

Low

EPSS

Percentile

9.0%

JSON

In the Linux kernel, the following vulnerability has been resolved:

ice: Fix DMA mappings leak

Fix leak, when user changes ring parameters.
During reallocation of RX buffers, new DMA mappings are created for
those buffers. New buffers with different RX ring count should
substitute older ones, but those buffers were freed in ice_vsi_cfg_rxq
and reallocated again with ice_alloc_rx_buf. kfree on rx_buf caused
leak of already mapped DMA.
Reallocate ZC with xdp_buf struct, when BPF program loads. Reallocate
back to rx_buf, when BPF program unloads.
If BPF program is loaded/unloaded and XSK pools are created, reallocate
RX queues accordingly in XDP_SETUP_XSK_POOL handler.

Steps for reproduction:
while :
do
for ((i=0; i<=8160; i=i+32))
do
ethtool -G enp130s0f0 rx $i tx $i
sleep 0.5
ethtool -g enp130s0f0
done
done

Affected configurations

Vulners

Node

linuxlinux_kernelRange5.16–5.19.9

linuxlinux_kernelRange5.20.0–6.0

VendorProductVersionCPE
linuxlinux_kernel*cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
linux	linux_kernel	*	cpe:2.3:o:linux:linux_kernel::::::::

CNA Affected

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "drivers/net/ethernet/intel/ice/ice_base.c",
      "drivers/net/ethernet/intel/ice/ice_main.c",
      "drivers/net/ethernet/intel/ice/ice_xsk.c",
      "drivers/net/ethernet/intel/ice/ice_xsk.h"
    ],
    "versions": [
      {
        "version": "617f3e1b588c",
        "lessThan": "07f40e9f0ff3",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "617f3e1b588c",
        "lessThan": "7e753eb675f0",
        "status": "affected",
        "versionType": "git"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "affected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "drivers/net/ethernet/intel/ice/ice_base.c",
      "drivers/net/ethernet/intel/ice/ice_main.c",
      "drivers/net/ethernet/intel/ice/ice_xsk.c",
      "drivers/net/ethernet/intel/ice/ice_xsk.h"
    ],
    "versions": [
      {
        "version": "5.16",
        "status": "affected"
      },
      {
        "version": "0",
        "lessThan": "5.16",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "5.19.9",
        "lessThanOrEqual": "5.19.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "6.0",
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "versionType": "original_commit_for_fix"
      }
    ]
  }
]