Linux Kernel Rxrpc Response Handling Vulnerability

A vulnerability in the Linux kernel's Rxrpc implementation has been addressed. The issue arose in the 'rxrpc_post_response()' function, where the code incorrectly compared challenge serial numbers from cached responses. Instead of referencing the older, cached data, it evaluated the newer packet's private information, leading to a perpetual mismatch. This flaw has been corrected by ensuring the comparison is made with the appropriate, older packet. Additionally, the fix allows for the newer packet to replace the old one when applicable, while also releasing any unused data.

Impact

The vulnerability could cause improper handling of response challenges, potentially leading to synchronization issues in response processing.

Remediation

Users can upgrade to the latest version of the Linux kernel to address this vulnerability. The specific commit containing the fix can be downloaded as a tarball.