Linux Kernel iavf Driver Reboot Hang Vulnerability

A hang issue during system reboot has been identified in the Linux kernel's iavf network driver, specifically on systems with E810 and existing virtual functions (VFs). The problem arises because the iavf_remove() function, which is part of the driver, gets stuck waiting for the VF to be in a specific state. During the reboot process, the adapter state is changed to indicate removal, but iavf_remove() expects it to be in a running or initialized state. As a result, the function sleeps indefinitely, causing the system to hang.

Impact

The vulnerability leads to a system hang during the reboot process, with the init process (PID 1) getting stuck in the iavf_remove() function.

Remediation

The vulnerability has been addressed by modifying the iavf_remove() function to return early if the adapter state indicates it has already been removed, preventing the indefinite hang.