CVE-2023-53499

Summary

In the Linux kernel, the following vulnerability has been resolved:

virtio_net: Fix error unwinding of XDP initialization

When initializing XDP in virtnet_open(), some rq xdp initialization may hit an error causing net device open failed. However, previous rqs have already initialized XDP and enabled NAPI, which is not the expected behavior. Need to roll back the previous rq initialization to avoid leaks in error unwinding of init code.

Also extract helper functions of disable and enable queue pairs. Use newly introduced disable helper function in error unwinding and virtnet_close. Use enable helper function in virtnet_open.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux754b8a21a96d5f11712245aef907149606b323ae < 6a7690f2bd178eee80f33411ae32e543ae66379caffected
LinuxLinux754b8a21a96d5f11712245aef907149606b323ae < 73f53bc295727a3cdbd9d6bcdfaa239258970cf4affected
LinuxLinux754b8a21a96d5f11712245aef907149606b323ae < 037768b28e3752c07d63d1c72a651a6775b080bbaffected
LinuxLinux754b8a21a96d5f11712245aef907149606b323ae < 5306623a9826aa7d63b32c6a3803c798a765474daffected
LinuxLinux4.16affected
LinuxLinux0 < 4.16unaffected
LinuxLinux5.15.113 <= 5.15.*unaffected
LinuxLinux6.1.30 <= 6.1.*unaffected
LinuxLinux6.3.4 <= 6.3.*unaffected
LinuxLinux6.4 <= *unaffected

Weaknesses

References