Linux Kernel Phylink Concurrent Write Serialization Vulnerability

A vulnerability in the Linux kernel's phylink component allows for concurrent modifications to the pl->phydev field, which can lead to a race condition. This issue arises because the phylink_resolve() function relies on a mutex to manage state, but this mutex is in a lock inversion with the phydev lock. As a result, the phydev lock must be acquired before the state mutex, creating a race condition when dereferencing phydev. To address this, an additional mutex has been introduced to serialize updates to phydev, ensuring safe concurrent access. This vulnerability affects the Linux kernel stable tree.

Impact

Exploitation of this vulnerability could lead to race conditions, allowing for concurrent modifications to the phylink state, which could disrupt normal operation and potentially cause undefined behavior in the network PHY management.

Remediation

Users can upgrade to the latest version of the Linux kernel stable tree, where this vulnerability has been addressed. Instructions for downloading the patched version are available on the Linux kernel official website.