Linux Kernel Ice Driver Memory Leak Vulnerability in Virtual Function Reset Scenario

A memory leak vulnerability has been identified in the Linux kernel's Ice virtual function (VF) management process. This issue arises during the VF reset procedure, where memory is allocated for port representor structures without considering the device's configuration mode. In switchdev mode, the memory allocation is unnecessary and not properly released, leading to a leak. The vulnerability has been traced to the Ice driver's handling of VF attachments and detachments, particularly after a reset is triggered.

Impact

Exploitation of this vulnerability causes a memory leak, where allocated memory is not properly freed, potentially leading to increased memory usage and degradation of system performance over time.

Reproduction

To reproduce this vulnerability, first create at least one virtual function on a physical network device that supports SR-IOV. This can be done by writing to the 'sriov_numvfs' file for the device. After a VF is created, trigger a reset of the device by writing to the 'reset' file. This process will initiate the detach/attach procedure for the VFs, during which the memory leak occurs.