漏洞标题
冰:避免不必要的IDA空闲导致的崩溃
漏洞描述信息
在Linux内核中,已解决了以下漏洞:
ice:避免由于不必要的IDA free导致的崩溃
在remove路径中,尝试无论是否分配了aux_idx IDA,都将其释放。在卸载驱动程序时,这可能会导致在不初始化RDMA支持的系统上崩溃。但是,由于在探测时如果驱动程序检测到RDMA支持,则会分配aux_idx,因此无法通过RDMA的状态位来控制这个释放,这会导致在探测时分配IDA并且在之后RDMA不被支持的情况下发生内存泄漏。
初始化aux_idx为无效值,并在卸载时检查有效值,以确定是否需要进行IDA free操作。
CVSS信息
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
漏洞类别
释放后使用
漏洞标题
ice: Avoid crash from unnecessary IDA free
漏洞描述信息
In the Linux kernel, the following vulnerability has been resolved:
ice: Avoid crash from unnecessary IDA free
In the remove path, there is an attempt to free the aux_idx IDA whether
it was allocated or not. This can potentially cause a crash when
unloading the driver on systems that do not initialize support for RDMA.
But, this free cannot be gated by the status bit for RDMA, since it is
allocated if the driver detects support for RDMA at probe time, but the
driver can enter into a state where RDMA is not supported after the IDA
has been allocated at probe time and this would lead to a memory leak.
Initialize aux_idx to an invalid value and check for a valid value when
unloading to determine if an IDA free is necessary.
CVSS信息
N/A
漏洞类别
N/A
漏洞标题
Linux kernel 安全漏洞
漏洞描述信息
Linux kernel是美国Linux基金会的开源操作系统Linux所使用的内核。 Linux kernel存在安全漏洞。攻击者利用该漏洞导致内存泄漏。
CVSS信息
N/A
漏洞类别
其他