Linux Kernel e1000/e1000e Driver DMA Mapping Vulnerability

A vulnerability exists in the Linux kernel's e1000 and e1000e network drivers, where improper handling of DMA buffer mappings can lead to memory leaks. This issue arises when the driver encounters an error while mapping transmission buffers. The driver fails to unmap previously mapped buffers for the affected socket buffer (skb), causing a memory leak. The problem is exacerbated by an off-by-one error introduced in a recent commit, which disrupts the correct unmapping of DMA buffers. Although this vulnerability has been addressed in the e1000 and e1000e drivers, it may still persist in the igbvf driver.

Impact

Exploitation of this vulnerability can lead to memory leaks, causing increased memory usage and potential degradation of system performance over time.

Reproduction

The vulnerability can be reproduced by using the e1000 or e1000e drivers to transmit data over the network. If an error occurs during the DMA mapping of the transmission buffers, the driver will fail to properly unmap the buffers, leading to a memory leak. This can be observed by monitoring the system's memory usage, which will gradually increase as the leaked buffers accumulate.

Remediation

Users can update to the latest version of the Linux kernel, where this vulnerability has been fixed. Instructions for updating the kernel can be found in the official Linux kernel documentation.