Linux Kernel Cavium Liquidio Ethernet Adapter Off-by-One Error Vulnerability

An off-by-one error has been identified in the Linux kernel's handling of Cavium Liquidio Ethernet adapters. This vulnerability occurs in the 'setup_nic_devices()' function, where the cleanup loop improperly skips the failing index, leading to a memory leak. The issue arises because the loop's current implementation bypasses the index of the failed allocation, causing a resource management problem. The vulnerability affects the Linux kernel stable tree.

Impact

Exploitation of this vulnerability causes a memory leak, where allocated resources are not properly released, potentially leading to increased memory usage and degradation of system performance over time.

Reproduction

The vulnerability can be reproduced by initializing a NIC device using the Cavium Liquidio Ethernet adapter support in the Linux kernel. During the 'setup_nic_devices()' process, the 'devlink_alloc' function may fail, triggering the cleanup routine. However, due to the off-by-one error, the cleanup loop will skip the index of the failed allocation, causing a memory leak. This issue can be observed by monitoring the memory usage of the system, which will increase without being properly released.

Remediation

The vulnerability has been fixed in the Linux kernel. Users should upgrade to the latest version that includes this fix.