Linux Kernel ixgbevf Mailbox API Compatibility Vulnerability

A vulnerability in the Linux kernel's ixgbevf driver has been identified, related to improper negotiation of mailbox API versions. This issue affects the compatibility of drivers across different operating systems that support Intel 10G adapters. The problem arose after the introduction of API version 1.4, which added IPSec offload support specific to the ixgbe driver, without considering the lack of support in other Intel 10G drivers. Subsequent changes increased the API version for the ixgbevf driver but created discrepancies that led to crashes when using certain features. The vulnerability disrupts the expected functionality of the driver, particularly in handling mailbox communications and feature negotiations, which could be exploited to cause regressions in supported features like IPSec offload.

Impact

The vulnerability causes a regression in the ixgbevf driver's support for IPSec offload and disrupts compatibility with ESX-specific mailbox communications, leading to potential crashes.

Reproduction

The vulnerability can be reproduced by using the ixgbevf driver with a virtual function (VF) that has been assigned to a virtual machine running on an ESX host. The driver will negotiate its mailbox API version with the corresponding physical function (PF) driver. Due to the vulnerability, the ixgbevf driver will incorrectly handle the negotiation, leading to a loss of functionality.

Remediation

Users can update to the latest version of the Linux kernel where this vulnerability has been addressed. Instructions for updating the kernel can be found in the official Linux documentation.