Linux Kernel DSA Tag 8021Q Context Leak Vulnerability in Error Handling

A vulnerability exists in the Linux kernel's DSA (Distributed Switch Architecture) tag 8021Q handling. When the function 'dsa_tag_8021q_setup()' fails—such as when a device cannot install a VLAN—the context associated with the 8021Q tag can leak. This leak occurs because the context is not properly freed before the function exits on error. The issue has been addressed by modifying the registration function to ensure that the context is released if an error occurs during setup.

Impact

The vulnerability can lead to a memory leak, where the context is not properly released, potentially causing increased memory usage or other unintended side effects.

Remediation

Users can upgrade to the latest version of the Linux kernel where this vulnerability has been fixed. Instructions for downloading the patched version are available on the Linux kernel's official website.