Linux Kernel net/mlx5 Flow Counter Use-After-Free Vulnerability

A use-after-free vulnerability has been identified in the Linux kernel's net/mlx5 component, specifically within the flow counter management. The issue arises when an HWS (Hardware Steering) action of a local flow counter is released without proper initialization of the reference count and mutex. This can lead to the counter structure being freed prematurely while the rule is still being deleted. The vulnerability has been addressed by adding the necessary initializations and implementing a reference count for the local flow counter structure.

Impact

Exploitation of this vulnerability can lead to a use-after-free condition, potentially allowing for arbitrary code execution or memory corruption.

Remediation

Users can upgrade to the latest version of the Linux kernel where this vulnerability has been fixed. Instructions for downloading the patched version are available on the official Linux kernel website.