Linux Kernel Google GVE Driver PTP Clock NULL Dereference Vulnerability

A vulnerability in the Linux kernel's Google GVE Ethernet driver can lead to a NULL pointer dereference. This issue arises because the PTP (Precision Time Protocol) clock implementation in the driver does not properly handle the 'gettimex64' function, which is expected to be implemented by all PTP clocks. The absence of a proper implementation can cause a NULL dereference when certain PTP clock functions are called. The vulnerability has been addressed by stubbing the 'gettimex64' function to return 'EOPNOTSUPP', indicating that the operation is not supported, thus preventing the NULL dereference.

Impact

Exploitation of this vulnerability can cause a NULL pointer dereference, leading to a crash of the affected system.

Reproduction

The vulnerability can be reproduced by using the Google GVE Ethernet driver with a PTP clock that has not implemented the 'gettimex64' or 'gettime64' functions. When PTP clock functions that rely on 'gettimex64' are called, the absence of a proper implementation will result in a NULL pointer dereference, causing a system crash.

Remediation

Users can upgrade to the latest version of the Linux kernel, where this vulnerability has been fixed. Instructions for upgrading the Linux kernel can be found in the official Linux documentation.