Entreprise française de cybersécurité depuis 2004
☎ 03 60 47 09 81 - info@securiteinfo.com
☎ 03 60 47 09 81 - info@securiteinfo.com
In the Linux kernel, the following vulnerability has been resolved:net/mlx5e: Skip restore TC rules for vport rep without loaded flagDuring driver unload, unregister_netdev is called after unloadingvport rep. So, the mlx5e_rep_priv is already freed while trying to getrpriv->netdev, or walk rpriv->tc_ht, which results in use-after-free.So add the checking to make sure access the data of vport rep which isstill loaded.
No PoCs from references.
- https://github.com/oogasawa/Utility-security