Linux Kernel RDMA Component NULL Pointer Dereference Vulnerability

A vulnerability in the Linux kernel's RDMA (Remote Direct Memory Access) subsystem can lead to a NULL pointer dereference, causing a kernel crash. This issue arises from an improper exposure of hardware counters to non-initial network namespaces, which can be exploited by reading the counters via the sysfs interface. The vulnerability has been addressed by restricting the visibility of these hardware counters to the initial network namespace only.

Impact

Exploitation of this vulnerability leads to a kernel panic caused by a NULL pointer dereference, disrupting system operations and potentially causing a denial of service.

Reproduction

The vulnerability can be reproduced by creating a new network namespace, executing a shell within that namespace, and attempting to read the hardware counters from the sysfs interface. This action triggers a kernel crash due to the improper handling of the device pointer, causing a memory corruption.

Remediation

Users should update to the latest version of the Linux kernel where this vulnerability has been fixed.