Linux Kernel IPvlan Per-Port Address Lock Vulnerability

A vulnerability exists in the Linux kernel's IPvlan implementation, where the address lock is applied per device instead of per port. This issue can lead to race conditions and false negatives when checking if an address is in use, particularly for IPv6. The vulnerability arises because certain address management functions can be called without the necessary locks, allowing concurrent modifications that could disrupt normal operations.

Impact

The vulnerability can cause race conditions and incorrect status reports regarding address usage, potentially leading to improper handling of network traffic or device management.

Reproduction

The vulnerability can be reproduced by modifying IPvlan addresses on different CPU cores simultaneously, particularly for IPv6 addresses. This can be done by creating a network device that uses IPvlan and then adding or removing IPv6 addresses while the device is active.

Remediation

The vulnerability has been addressed by changing the address lock to be per port and ensuring that all modifications to the address list are properly synchronized. Users should upgrade to the latest version of the Linux kernel where this fix has been applied.