Linux Kernel PATA VIA Controller ATAPI DMA Vulnerability on VT6415/VT6330

A vulnerability in the Linux kernel's PATA VIA driver affects systems with VIA VT6415 or VT6330 controllers. The issue arises from a hardware bug that can cause the system to freeze when handling ATAPI Direct Memory Access (DMA) operations, particularly without any indication of the problem. This freeze can occur while reading ATIP information from optical media using the 'cdrecord' command, especially with certain DVD writers attached to affected motherboards. The problem can also prevent the system from booting, depending on the connected device. While the hang can be reproduced on Windows XP with a Cygwin build of 'cdrecord', it requires multiple attempts and is resolved by forcing Programmed Input/Output (PIO) mode, a workaround not available for Linux users.

Impact

The vulnerability can cause the system to hard hang, disrupting normal operations and potentially leading to data loss or corruption.

Reproduction

The vulnerability can be reproduced on a system with an ASRock 990FX Extreme 4 motherboard, using an NEC DVD_RW ND-4571A or an Optiarc DVD RW AD-7200A drive. The 'cdrecord' command can be used to read the ATIP from the optical media, which will trigger the system hang. On Windows XP, this issue can be replicated with a Cygwin build of 'cdrecord', although it may take more attempts to cause the hang.

Remediation

Users can force PIO mode for ATAPI devices on affected controllers to prevent the system hang. This can be done by applying the appropriate kernel patch available in the Linux kernel Git repository.