Linux Kernel XFRM State Tunnel Deletion Vulnerability

A vulnerability in the Linux kernel's XFRM (IPsec transformation) state management has been addressed. The issue arose because the deletion of fallback tunnels for IPcomp states was not properly handled when state creation failed after initialization but before being added to the management lists. This oversight led to a memory leak of the fallback tunnel. The vulnerability affected the state addition, update processes, and migration code, creating a complex scenario where uninserted states could be left dangling. The fix involves ensuring that the tunnel deletion is called during the garbage collection process for states that were never fully integrated into the management system.

Impact

The vulnerability could lead to a memory leak by failing to properly delete fallback tunnels, allowing them to persist unnecessarily.

Remediation

Users can upgrade to the latest version of the Linux kernel where this vulnerability has been fixed. Instructions for downloading the patched version are available on the Linux Kernel Archive.