In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Use mlx5_ipsec_rx_status_destroy to correctly delete status rules rx_create no longer allocates a modify_hdr instance that needs to be cleaned up. The mlx5_modify_header_dealloc call will lead to a NULL pointer dereference. A leak in the rules also previously occurred since there are now two rules populated related to status. BUG: kernel NULL pointer dereference, address: 0000000000000000 #PF: supervisor read access in kernel mode #PF: error_code(0x0000) - not-present page PGD 109907067 P4D 109907067 PUD 116890067 PMD 0 Oops: 0000 [#1] SMP CPU: 1 PID: 484 Comm: ip Not tainted 6.9.0-rc2-rrameshbabu+ #254 Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS Arch Linux 1.16.3-1-1 04/01/2014 RIP: 0010:mlx5_modify_header_dealloc+0xd/0x70 <snip> Call Trace: <TASK> ? show_regs+0x60/0x70 ? __die+0x24/0x70 ? page_fault_oops+0x15f/0x430 ? free_to_partial_list.constprop.0+0x79/0x150 ? do_user_addr_fault+0x2c9/0x5c0 ? exc_page_fault+0x63/0x110 ? asm_exc_page_fault+0x27/0x30 ? mlx5_modify_header_dealloc+0xd/0x70 rx_create+0x374/0x590 rx_add_rule+0x3ad/0x500 ? rx_add_rule+0x3ad/0x500 ? mlx5_cmd_exec+0x2c/0x40 ? mlx5_create_ipsec_obj+0xd6/0x200 mlx5e_accel_ipsec_fs_add_rule+0x31/0xf0 mlx5e_xfrm_add_state+0x426/0xc00 <snip>

• https://git.kernel.org/stable/c/16d66a4fa81da07bc4ed19f4e53b87263c2f8d38
• https://git.kernel.org/stable/c/b0a15cde37a8388e57573686f650a17208ae1212
• https://git.kernel.org/stable/c/cc9ac559f2e21894c21ac5b0c85fb24a5cab266c
• https://git.kernel.org/stable/c/16d66a4fa81da07bc4ed19f4e53b87263c2f8d38
• https://git.kernel.org/stable/c/b0a15cde37a8388e57573686f650a17208ae1212
• https://git.kernel.org/stable/c/cc9ac559f2e21894c21ac5b0c85fb24a5cab266c

• Linux » Linux Kernel » Version: 6.10
  cpe:2.3:o:linux:linux_kernel:6.10
• Linux » Linux Kernel » Version: 6.6.10
  cpe:2.3:o:linux:linux_kernel:6.6.10
• Linux » Linux Kernel » Version: 6.6.11
  cpe:2.3:o:linux:linux_kernel:6.6.11
• Linux » Linux Kernel » Version: 6.6.12
  cpe:2.3:o:linux:linux_kernel:6.6.12
• Linux » Linux Kernel » Version: 6.6.13
  cpe:2.3:o:linux:linux_kernel:6.6.13
• Linux » Linux Kernel » Version: 6.6.14
  cpe:2.3:o:linux:linux_kernel:6.6.14
• Linux » Linux Kernel » Version: 6.6.15
  cpe:2.3:o:linux:linux_kernel:6.6.15
• Linux » Linux Kernel » Version: 6.6.16
  cpe:2.3:o:linux:linux_kernel:6.6.16
• Linux » Linux Kernel » Version: 6.6.17
  cpe:2.3:o:linux:linux_kernel:6.6.17
• Linux » Linux Kernel » Version: 6.6.18
  cpe:2.3:o:linux:linux_kernel:6.6.18
• Linux » Linux Kernel » Version: 6.6.19
  cpe:2.3:o:linux:linux_kernel:6.6.19
• Linux » Linux Kernel » Version: 6.6.20
  cpe:2.3:o:linux:linux_kernel:6.6.20
• Linux » Linux Kernel » Version: 6.6.21
  cpe:2.3:o:linux:linux_kernel:6.6.21
• Linux » Linux Kernel » Version: 6.6.22
  cpe:2.3:o:linux:linux_kernel:6.6.22
• Linux » Linux Kernel » Version: 6.6.23
  cpe:2.3:o:linux:linux_kernel:6.6.23
• Linux » Linux Kernel » Version: 6.6.24
  cpe:2.3:o:linux:linux_kernel:6.6.24
• Linux » Linux Kernel » Version: 6.6.25
  cpe:2.3:o:linux:linux_kernel:6.6.25
• Linux » Linux Kernel » Version: 6.6.26
  cpe:2.3:o:linux:linux_kernel:6.6.26
• Linux » Linux Kernel » Version: 6.6.27
  cpe:2.3:o:linux:linux_kernel:6.6.27
• Linux » Linux Kernel » Version: 6.6.28
  cpe:2.3:o:linux:linux_kernel:6.6.28
• Linux » Linux Kernel » Version: 6.6.29
  cpe:2.3:o:linux:linux_kernel:6.6.29
• Linux » Linux Kernel » Version: 6.6.30
  cpe:2.3:o:linux:linux_kernel:6.6.30
• Linux » Linux Kernel » Version: 6.6.31
  cpe:2.3:o:linux:linux_kernel:6.6.31
• Linux » Linux Kernel » Version: 6.6.32
  cpe:2.3:o:linux:linux_kernel:6.6.32
• Linux » Linux Kernel » Version: 6.6.8
  cpe:2.3:o:linux:linux_kernel:6.6.8
• Linux » Linux Kernel » Version: 6.6.9
  cpe:2.3:o:linux:linux_kernel:6.6.9
• Linux » Linux Kernel » Version: 6.7
  cpe:2.3:o:linux:linux_kernel:6.7
• Linux » Linux Kernel » Version: 6.7.1
  cpe:2.3:o:linux:linux_kernel:6.7.1
• Linux » Linux Kernel » Version: 6.7.10
  cpe:2.3:o:linux:linux_kernel:6.7.10
• Linux » Linux Kernel » Version: 6.7.11
  cpe:2.3:o:linux:linux_kernel:6.7.11
• Linux » Linux Kernel » Version: 6.7.12
  cpe:2.3:o:linux:linux_kernel:6.7.12
• Linux » Linux Kernel » Version: 6.7.2
  cpe:2.3:o:linux:linux_kernel:6.7.2
• Linux » Linux Kernel » Version: 6.7.3
  cpe:2.3:o:linux:linux_kernel:6.7.3
• Linux » Linux Kernel » Version: 6.7.4
  cpe:2.3:o:linux:linux_kernel:6.7.4
• Linux » Linux Kernel » Version: 6.7.5
  cpe:2.3:o:linux:linux_kernel:6.7.5
• Linux » Linux Kernel » Version: 6.7.6
  cpe:2.3:o:linux:linux_kernel:6.7.6
• Linux » Linux Kernel » Version: 6.7.7
  cpe:2.3:o:linux:linux_kernel:6.7.7
• Linux » Linux Kernel » Version: 6.7.8
  cpe:2.3:o:linux:linux_kernel:6.7.8
• Linux » Linux Kernel » Version: 6.7.9
  cpe:2.3:o:linux:linux_kernel:6.7.9
• Linux » Linux Kernel » Version: 6.8
  cpe:2.3:o:linux:linux_kernel:6.8
• Linux » Linux Kernel » Version: 6.8.1
  cpe:2.3:o:linux:linux_kernel:6.8.1
• Linux » Linux Kernel » Version: 6.8.10
  cpe:2.3:o:linux:linux_kernel:6.8.10
• Linux » Linux Kernel » Version: 6.8.11
  cpe:2.3:o:linux:linux_kernel:6.8.11
• Linux » Linux Kernel » Version: 6.8.12
  cpe:2.3:o:linux:linux_kernel:6.8.12
• Linux » Linux Kernel » Version: 6.8.2
  cpe:2.3:o:linux:linux_kernel:6.8.2
• Linux » Linux Kernel » Version: 6.8.3
  cpe:2.3:o:linux:linux_kernel:6.8.3
• Linux » Linux Kernel » Version: 6.8.4
  cpe:2.3:o:linux:linux_kernel:6.8.4
• Linux » Linux Kernel » Version: 6.8.5
  cpe:2.3:o:linux:linux_kernel:6.8.5
• Linux » Linux Kernel » Version: 6.8.6
  cpe:2.3:o:linux:linux_kernel:6.8.6
• Linux » Linux Kernel » Version: 6.8.7
  cpe:2.3:o:linux:linux_kernel:6.8.7
• Linux » Linux Kernel » Version: 6.8.8
  cpe:2.3:o:linux:linux_kernel:6.8.8
• Linux » Linux Kernel » Version: 6.8.9
  cpe:2.3:o:linux:linux_kernel:6.8.9
• Linux » Linux Kernel » Version: 6.9
  cpe:2.3:o:linux:linux_kernel:6.9
• Linux » Linux Kernel » Version: 6.9.1
  cpe:2.3:o:linux:linux_kernel:6.9.1
• Linux » Linux Kernel » Version: 6.9.2
  cpe:2.3:o:linux:linux_kernel:6.9.2
• Linux » Linux Kernel » Version: 6.9.3
  cpe:2.3:o:linux:linux_kernel:6.9.3