Volerion logoVolerion
Volerion logoVolerion

Linux Kernel net/mlx5e Encap Attribute Invalidation Vulnerability

Vulnerability

A vulnerability in the Linux kernel's handling of encapsulation attributes within the mlx5e network driver can lead to improper flow management. The issue arises because the function responsible for invalidating encapsulation does not correctly remove modified header actions, causing warnings during operation. This vulnerability affects the stable version of the Linux kernel.

Impact

Failure to properly manage encapsulation attributes can lead to warnings and potential disruptions in network flow handling, particularly for offloaded flows.

Reproduction

The vulnerability can be reproduced by creating offloaded flows that use encapsulation attributes. When the mlx5e_invalidate_encap() function is called, it fails to remove the correct modified header actions, leading to a warning. This can be observed in the kernel log.

Remediation

Users can apply the latest patches available in the Linux kernel stable tree to address this vulnerability.

Added: Dec 24, 2025, 3:59 PM
Updated: Dec 24, 2025, 3:59 PM

Vulnerability Rating

Custom Algorithm
spread
9.0
impact
2.5
exploitability
5.7
remediation
7.7
relevance
1.6
threat
4.8
urgency
2.9
incentive
1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.