Linux Kernel Intel IGB Driver Use-After-Free Vulnerability

A use-after-free vulnerability has been identified in the Linux kernel's Intel IGB network driver. This issue arises in versions of the kernel prior to the patch included in the stable tree. The vulnerability occurs in the 'igb_alloc_q_vector' function, where the 'q_vector' is freed but not properly managed if the memory allocation fails. Under memory pressure, this can leave a dangling pointer in the adapter's queue vector array, potentially leading to memory corruption or exploitation.

Impact

Exploitation of this vulnerability can lead to a use-after-free condition, which may be exploited to execute arbitrary code or cause a denial-of-service by crashing the system.

Reproduction

The vulnerability can be reproduced by triggering a memory allocation failure in the 'igb_alloc_q_vector' function. This can be done by applying memory pressure to the system, causing the 'kzalloc' function to fail. When this happens, the 'q_vector' is freed but left in the original adapter's queue vector array position, creating a use-after-free condition.

Remediation

Users can upgrade to the latest version of the Linux kernel where this vulnerability has been patched. Instructions for downloading the updated kernel can be found on the official Linux kernel website.