Linux Kernel hibmcge Driver Rtnl Lock Deadlock Vulnerability

A deadlock vulnerability has been identified in the Linux kernel's hibmcge network driver. This issue arises because the driver improperly manages the rtnl_lock during PCI error handling, leading to a deadlock when multiple devices request the lock sequentially. The vulnerability affects the Linux kernel stable tree.

Impact

The vulnerability can cause a deadlock, where the system becomes unresponsive due to two devices of the hibmcge driver simultaneously requesting the rtnl_lock, blocking each other and halting the normal operation of the driver.

Reproduction

The vulnerability can be reproduced by triggering a PCI error recovery process on a system running the affected hibmcge driver. This process will cause the driver to acquire the rtnl_lock, leading to a deadlock when another device attempts to do the same.

Remediation

The vulnerability has been addressed in the Linux kernel. Users can upgrade to the latest version available in the Linux kernel stable tree to apply the fix.