Linux Kernel AXI Ethernet Driver RX Metadata Pointer Error Handling Vulnerability

A vulnerability in the Linux kernel's AXI Ethernet driver can lead to crashes or undefined behavior. The issue arises because the function responsible for retrieving metadata pointers can return an error, but this potential failure was not properly handled. As a result, the driver could process invalid data, leading to instability. The vulnerability has been addressed by implementing proper error checking, ensuring that any error pointers are managed correctly by unmapping the associated DMA buffer, freeing the socket buffer, and halting further processing with the invalid data.

Impact

The lack of proper error handling could lead to crashes or undefined behavior in systems using the affected driver.

Reproduction

The vulnerability can be reproduced by using the Xilinx AXI Ethernet driver in the Linux kernel without the error handling fix. When the DMA engine metadata pointer retrieval fails, the driver will continue processing with the invalid data, leading to a crash or undefined behavior.

Remediation

Users can apply the latest patches available in the Linux kernel stable tree to address this vulnerability.