Linux Kernel RDMA/rxe Resource Management Vulnerability

A vulnerability in the Linux kernel's RDMA/rxe component has been addressed. This issue involved improper management of RXE resources, such as Queue Pairs (QPs) and socket references, which could lead to call traces when certain packets were destroyed. To mitigate this, a timestamp is now added to socket buffer (skb) packets upon creation. This allows network devices to release delayed skb packets and free associated RXE resources if the packets have been held too long.

Impact

The vulnerability could cause call traces to appear, indicating a disruption in the expected flow of packet processing due to mismanaged resources.

Reproduction

The vulnerability can be reproduced by sending skb packets that depend on RDMA/rxe resources. When these packets are destroyed, the associated RXE resources should be released. However, if the resources are released before the packets are properly handled, it can result in call traces being generated, indicating a problem with the packet processing.

Remediation

Users can apply the latest patches available in the Linux kernel stable tree to address this vulnerability.