Linux Kernel Intel Ice Driver Switchdev and ADQ Mode Conflict Vulnerability

A vulnerability in the Linux kernel's Intel Ice driver has been addressed, concerning a conflict between Active Data Queue (ADQ) and switchdev modes. These two features cannot be enabled simultaneously, as doing so may lead to a null pointer dereference. The vulnerability arises when ADQ is active and the devlink mode is changed to switchdev, or vice versa. The issue has been resolved by implementing checks to ensure that ADQ is not active when switching to switchdev mode, and that switchdev is not active when enabling ADQ.

Impact

The vulnerability could lead to a null pointer dereference, potentially causing a denial of service by crashing the system or application.

Reproduction

To reproduce this vulnerability, activate ADQ in the Intel Ice driver and then attempt to change the devlink mode to switchdev. Alternatively, enable switchdev mode and then activate ADQ, which will trigger the same conflict.

Remediation

Users can update to the latest version of the Linux kernel where this vulnerability has been fixed. Instructions for downloading the patched version are available on the Linux kernel official website.