Linux Kernel IPPROTO_UDPLITE NULL Pointer Dereference Vulnerability

A NULL pointer dereference vulnerability has been identified in the Linux kernel's handling of the UDPLITE protocol. This issue arises in the memory management functions associated with socket operations, specifically when the protocol is used over IPv6. The vulnerability was introduced because the UDPLITE protocol did not properly account for memory allocation, leading to a crash when the protocol attempted to access uninitialized memory. The problem was reported by syzbot, a tool that detects bugs in the Linux kernel.

Impact

Exploitation of this vulnerability leads to a general protection fault, caused by a null pointer dereference. This type of error typically results in a crash of the affected process or service.

Reproduction

The vulnerability can be reproduced by creating a socket using the IPPROTO_UDPLITE protocol over IPv6. This can be done using a program that opens a socket with the specified protocol, which will trigger the null pointer dereference when the socket is used.

Remediation

The vulnerability has been addressed in the Linux kernel by updating the UDPLITE protocol to properly manage memory allocation. Users should upgrade to the latest version of the Linux kernel where this fix has been applied.