CVE-2022-50003 Information

Description

In the Linux kernel the following vulnerability has been resolved:

ice: xsk: prohibit usage of non-balanced queue id

Fix the following scenario:

1. ethtool -L $IFACE rx 8 tx 96
2. xdpsock -q 10 -t -z

Above refers to a case where user would like to attach XSK socket in txonly mode at a queue id that does not have a corresponding Rx queue. At this moment ice’s XSK logic is tightly bound to act on a \queue pair\ne.g. both Tx and Rx queues at a given queue id are disabled/enabled and both of them will get XSK pool assigned which is broken for the presented queue configuration. This results in the splat included at the bottom which is basically an OOB access to Rx ring array.

To fix this allow using the ids only in scope of ## Reference https://git.kernel.org/stable/c/03a3f29fe5b1751ad9b5c892c894183e75a6e4c4 https://git.kernel.org/stable/c/1bfdcde723d8ceb2d73291b0415767e7c1cc1d8a https://git.kernel.org/stable/c/5a42f112d367bb4700a8a41f5c12724fde6bfbb9 https://git.kernel.org/stable/c/fe76b3e674665ea4059337f8f66d20cdfb0168eb

Related CNNVD

CNNVD-202506-2290 (Published: 2025-06-18)