Linux Kernel CAN ISOTP Timer Management Vulnerability

A vulnerability in the Linux kernel's CAN ISOTP (ISO 15765-2) implementation has been addressed. The issue arose because the transmission timer for ISOTP Protocol Data Units (PDUs) combined two functions: sending two consecutive frames with a specified time gap and monitoring timeouts for flow control and echo frames. This dual functionality complicated state management and potentially triggered a warning panic during testing. The vulnerability has been resolved by separating the timer's functions into distinct transmission and timeout timers, which now operate in a one-shot mode. This change simplifies the timer management and improves the clarity of state transitions, particularly with echo frame handling.

Impact

The vulnerability could lead to improper timer management, causing confusion in state transitions and potentially allowing for unintended behavior during CAN communication.