Linux Kernel Net Shaper Late Read Access Vulnerability

A vulnerability in the Linux kernel's net shaper implementation allows for improper handling of late read accesses to the hierarchy of network devices. During the preparation of Netlink operations, a reference to a network device is taken. However, the subsequent locking mechanisms do not include a liveness check to ensure the device has not been unregistered. This oversight can lead to accessing invalid or unregistered network devices. The vulnerability affects the stable versions of the Linux kernel.

Impact

Exploitation of this vulnerability could result in accessing unregistered network devices, potentially leading to undefined behavior or crashes.

Reproduction

The vulnerability can be reproduced by initiating a Netlink operation that involves network shaping. The operation will incorrectly handle the hierarchy of network devices, allowing late read accesses that bypass necessary liveness checks.

Remediation

Users can upgrade to the latest stable version of the Linux kernel, where this vulnerability has been addressed.