Linux Kernel Memory Leak Vulnerability in macvlan Component

A memory leak vulnerability has been identified in the Linux kernel's macvlan component. This issue arises in the 'source' mode when the macvlan_common_newlink function is called to manage a list of remote source MAC addresses. If an error occurs during this process, the allocated resources are not properly released, leading to memory leaks. The vulnerability has been addressed by ensuring that resources are cleaned up in case of an error.

Impact

Exploitation of this vulnerability leads to memory leaks, where allocated memory is not properly released, potentially causing increased memory usage and degradation of system performance over time.

Reproduction

The vulnerability can be reproduced by adding a macvlan interface in 'source' mode while linking it to an existing interface, such as eth0'. If the operation fails, the memory allocated for managing the source MAC addresses is not freed, causing a memory leak.

Remediation

Users should upgrade to the latest version of the Linux kernel where this vulnerability has been patched.