Linux Kernel PCI Device Presence Check Vulnerability in Virtual Functions

A vulnerability in the Linux kernel's PCI subsystem affects the presence check for Virtual Functions (VFs) in the Single Root I/O Virtualization (SR-IOV) framework. The issue arises because the function 'pci_device_is_present()' incorrectly identifies VFs as absent. This misjudgment occurs because the Vendor and Device IDs for VFs are set to '0xffff', which the function interprets as indicating that the devices are not present. The vulnerability can lead to a denial-of-service condition, particularly in scenarios involving virtio I/O operations. When a driver is unbound or when '0' is written to the SR-IOV virtual functions configuration, any ongoing virtio I/O tasks can hang. This situation may disrupt normal operations and cause processes to become unresponsive.

Impact

The vulnerability can cause virtio I/O operations to hang, leading to unresponsive processes and disrupted I/O tasks.

Reproduction

To reproduce this issue, first ensure that a driver is actively managing virtio I/O operations. Then, unbind the driver or write '0' to the SR-IOV virtual functions configuration. This sequence of actions will cause the virtio I/O operations to hang, demonstrating the vulnerability.

Remediation

Users can upgrade to the latest stable version of the Linux kernel, where this vulnerability has been addressed. Instructions for downloading the patched kernel can be found on the official Linux kernel website.