Linux Kernel NULL Pointer Dereference Vulnerability in Intel Ethernet Controller E810-XXV

A NULL pointer dereference vulnerability has been identified in the Linux kernel's Intel Ice driver, specifically in the 'ice_vsi_set_napi_queues' function. This vulnerability can lead to system crashes during the resume phase after a suspend, particularly when the receive or transmit rings' queue vector is not properly initialized. The issue has been observed in version 6.18 of the Linux kernel, while handling the Intel Ethernet Controller E810-XXV for SFP.

Impact

Exploitation of this vulnerability causes a kernel panic due to a NULL pointer dereference, disrupting system operations and potentially leading to a denial of service.

Reproduction

The vulnerability can be reproduced by suspending the system using commands like 'systemctl suspend' or 'rtcwake', and then resuming. The absence of proper NULL checks in the 'ice_vsi_set_napi_queues' function can be observed, as the system attempts to access an uninitialized queue vector, leading to a NULL pointer dereference.

Remediation

The vulnerability has been addressed in the Linux kernel by adding necessary NULL pointer checks in the 'ice_vsi_set_napi_queues' function. Users can apply the latest patches available in the Linux stable tree to mitigate this issue.