Linux Kernel CIFS Client Division Error Vulnerability Due to Unset Link Speed

A vulnerability in the Linux kernel's CIFS client has been addressed, which could lead to a division error. This issue arises because the server does not always provide a link speed, leaving the client to manage undefined values. The lack of a set link speed can cause a kernel oops, a type of error that indicates a serious problem in the kernel's operation. The vulnerability was present in version 6.13.0-rc7.

Impact

Exploitation of this vulnerability causes a division error, leading to a kernel oops, which can disrupt normal system operations and indicate a serious issue within the kernel.

Reproduction

The vulnerability can be reproduced by using the CIFS client in a Linux environment where the link speed is not set by the server. This can be done by accessing a shared resource over CIFS without the server providing the necessary link speed information. The resulting division error will cause a kernel oops, demonstrating the vulnerability.

Remediation

The vulnerability has been fixed by modifying the CIFS client to default the link speed to a standard value of 1Gbps when no speed is provided by the server.