Linux Kernel IAVF Driver Traffic IRQs Leak Vulnerability

A vulnerability in the Linux kernel's IAVF (Intel Ethernet Virtual Function) driver can lead to a resource leak. This issue occurs when the system attempts to close a network device while the IAVF reset task is still running. As a result, the internal state management fails, causing the driver to not properly release traffic interrupt requests. This oversight leads to a leak of interrupt-related resources, which can be observed in the system logs as a warning about removing a non-empty directory, indicating that some IRQ resources were not properly cleaned up.

Impact

Failing to release traffic interrupt requests can lead to a resource leak, where interrupt-related resources remain allocated but are no longer in use, potentially causing issues with interrupt handling and resource management in the system.

Reproduction

The vulnerability can be reproduced by initiating the process of closing a network device while the IAVF reset task is active. This can be done by manually shutting down the network interface through system commands or network management tools, while simultaneously triggering a reset in the IAVF driver, such as by reinitializing the driver or the associated virtual function.

Remediation

The vulnerability has been addressed in the official Linux Git repository. Users can upgrade to the latest version of the Linux kernel to apply the fix.