Linux Kernel IPMI Driver Message Handling Limit Vulnerability

A vulnerability in the Linux kernel's IPMI driver could lead to inefficient message handling. The driver previously fetched events and messages continuously until the Baseboard Management Controller (BMC) indicated completion. This behavior could cause issues with BMCs that do not properly signal when they are done. The vulnerability allows a BMC to falsely report available data, potentially leading to a communication bottleneck. The problem arises from the driver's inability to manage repeated fetch requests, especially if the BMC gets 'stuck' indicating there are messages or events to be processed.

Impact

This vulnerability can cause the IPMI driver to become unresponsive or inefficient in handling messages and events, particularly in scenarios where the BMC fails to properly communicate the end of data transmission.

Reproduction

The vulnerability can be reproduced by using an IPMI interface that does not correctly signal the completion of message or event fetching. This can be simulated by a BMC that either never indicates it has finished sending data or gets stuck in a state where it continuously reports available messages or events, causing the driver to overload with fetch requests.

Remediation

Users can update to the latest version of the Linux kernel where this vulnerability has been addressed. Instructions for updating the kernel can be found in the official Linux kernel documentation.