Linux Kernel NULL Pointer Dereference Vulnerability in Intel Ice Driver

A vulnerability in the Linux kernel's Intel Ice Ethernet driver can lead to a NULL pointer dereference. This issue occurs in the Link Aggregation Group (LAG) handling, where the function 'ice_lag_is_switchdev_running()' is called outside of the LAG event handler. As a result, the 'lag->upper_netdev' can be NULL, potentially causing a crash. The vulnerability affects several versions of the Linux kernel.

Impact

Exploitation of this vulnerability can cause a system crash due to a NULL pointer dereference, disrupting services and potentially leading to a denial of service condition.

Reproduction

The vulnerability can be reproduced by configuring a LAG interface with the Intel Ice Ethernet driver and then triggering the 'ice_lag_is_switchdev_running()' function call outside of the LAG event handler. This will result in the 'lag->upper_netdev' being NULL, causing a NULL pointer dereference.

Remediation

Users can upgrade to the latest version of the Linux kernel where this vulnerability has been addressed. Instructions for downloading the patched version are available on the Linux kernel official website.