CVE-2023-53442

Summary

In the Linux kernel, the following vulnerability has been resolved:

ice: Block switchdev mode when ADQ is active and vice versa

ADQ and switchdev are not supported simultaneously. Enabling both at the same time can result in nullptr dereference.

To prevent this, check if ADQ is active when changing devlink mode to switchdev mode, and check if switchdev is active when enabling ADQ.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxfbc7b27af0f9fb181811424e29caf6825594a841 < 1c82d1b736ce85e77fd4da05eca6f1f4a52a2bc3affected
LinuxLinuxfbc7b27af0f9fb181811424e29caf6825594a841 < 24f0d69da35d812b3a1104918014a29627140cb1affected
LinuxLinuxfbc7b27af0f9fb181811424e29caf6825594a841 < 43d00e102d9ecbe2635d7e3f2e14d2e90183d6afaffected
LinuxLinux5.16affected
LinuxLinux0 < 5.16unaffected
LinuxLinux6.1.47 <= 6.1.*unaffected
LinuxLinux6.4.12 <= 6.4.*unaffected
LinuxLinux6.5 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References