Linux Kernel BPF CPUMAP Vulnerability in SKB Handling During Pointer Ring Cleanup

A vulnerability in the Linux kernel's BPF CPUMAP implementation has been addressed. The issue arose when the XDP redirect to CPU feature was used with both SKB mode and stress mode activated, leading to a warning about incorrect XDP memory type usage. This warning indicated that the CPU map cleanup process was not properly handling SKB (socket buffer) data, instead treating it as XDP frames. As a result, SKBs in the pointer ring were not managed correctly, potentially causing memory management issues. The vulnerability was introduced in version 6.5.0-rc2 and has been fixed in subsequent releases.

Impact

The vulnerability could lead to improper memory management, specifically in how socket buffers are handled, which could cause warnings about incorrect XDP memory usage and potentially disrupt normal operations.

Reproduction

To reproduce this issue, activate the XDP redirect to CPU feature while both SKB mode and stress mode are enabled. This will trigger the warning about incorrect XDP memory type usage, indicating that the SKBs are not being handled properly during the cleanup process.

Remediation

Users can upgrade to the latest version of the Linux kernel to address this vulnerability.