In the Linux kernel, the following vulnerability has been resolved:
octeontx2-pf: Fix SQE threshold checking
Current way of checking available SQE count which is based on HW updated SQB count could result in driver submitting an SQE even before CQE for the previously transmitted SQE at the same index is processed in NAPI resulting losing SKB pointers, hence a leak. Fix this by checking a consumer index which is updated once CQE is processed.
{ "vanir_signatures": [ { "deprecated": false, "signature_type": "Line", "target": { "file": "drivers/net/ethernet/marvell/octeontx2/nic/otx2_txrx.c" }, "id": "CVE-2022-49858-07ba5046", "digest": { "line_hashes": [ "270706724616556061810955045135256230241", "169419299191349852145009426019436638308", "31103829702912535628644898067550203248", "270540137835210694218592531593018781829", "132540771366421969821586437419622694823", "188942924881359723049654134069299741159", "311380213238659701057292175807733871524", "137530197154798050671781291449245493013", "24946431443077664038439720953026822481", "268116087759168187069976104698788967137", "102190609179142152724762500940038473803", "45773820044613420482006879303852619601", "270513801013310956712294568907945038733", "59088832419479700193027478488274707263", "120676121425639054430657993640202582022", "96371336524029454342808206889933130566", "276439763994652423053991914262248592813", "107979050730846032724200819413584517983", "149527178361496123156216536109105032542", "31124250945738306071353944866832352894", "95791768900168823039318932275410129692", "304005931841582400900146824110553176967", "19454622729978885749668201815406673357", "312517022301503482601999121902246017175", "308001457414729495661461727596178642236", "15085086678236937996957191587239440151", "283055430933077482443265746361390360116", "304928500217803873839173650818906070081", "335074967350121798827970091145862756510", "87513938264047446091155121976380144267", "222673092333491521730815961476102113120", "120661013140266100704718848533564635219" ], "threshold": 0.9 }, "signature_version": "v1", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@015e3c0a3b16193aab23beefe4719484b9984c2d" }, { "deprecated": false, "signature_type": "Line", "target": { "file": "drivers/net/ethernet/marvell/octeontx2/nic/otx2_common.c" }, "id": "CVE-2022-49858-10f2fd10", "digest": { "line_hashes": [ "135096908668984300312990928607787429500", "150341443687368142392928402782256321729", "4167524203372103164996606494349270943", "326650451416385063169796424954568099140" ], "threshold": 0.9 }, "signature_version": "v1", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@f0dfc4c88ef39be0ba736aa0ce6119263fc19aeb" }, { "deprecated": false, "signature_type": "Function", "target": { "file": "drivers/net/ethernet/marvell/octeontx2/nic/otx2_txrx.c", "function": "otx2_tx_napi_handler" }, "id": "CVE-2022-49858-12f9f2d9", "digest": { "length": 1085.0, "function_hash": "335053455305187050567995082631950773709" }, "signature_version": "v1", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@015e3c0a3b16193aab23beefe4719484b9984c2d" }, { "deprecated": false, "signature_type": "Line", "target": { "file": "drivers/net/ethernet/marvell/octeontx2/nic/otx2_txrx.h" }, "id": "CVE-2022-49858-2f171798", "digest": { "line_hashes": [ "134879958668189083254206260490670236041", "250229896681413734318508299372750019913", "197221916776331550214266926853575285754", "304721332975905447202209378162335665112" ], "threshold": 0.9 }, "signature_version": "v1", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@015e3c0a3b16193aab23beefe4719484b9984c2d" }, { "deprecated": false, "signature_type": "Line", "target": { "file": "drivers/net/ethernet/marvell/octeontx2/nic/otx2_txrx.h" }, "id": "CVE-2022-49858-5c12def1", "digest": { "line_hashes": [ "134879958668189083254206260490670236041", "250229896681413734318508299372750019913", "197221916776331550214266926853575285754", "304721332975905447202209378162335665112" ], "threshold": 0.9 }, "signature_version": "v1", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@f0dfc4c88ef39be0ba736aa0ce6119263fc19aeb" }, { "deprecated": false, "signature_type": "Line", "target": { "file": "drivers/net/ethernet/marvell/octeontx2/nic/otx2_common.c" }, "id": "CVE-2022-49858-683b2be2", "digest": { "line_hashes": [ "135096908668984300312990928607787429500", "150341443687368142392928402782256321729", "4167524203372103164996606494349270943", "326650451416385063169796424954568099140" ], "threshold": 0.9 }, "signature_version": "v1", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@015e3c0a3b16193aab23beefe4719484b9984c2d" }, { "deprecated": false, "signature_type": "Function", "target": { "file": "drivers/net/ethernet/marvell/octeontx2/nic/otx2_common.c", "function": "otx2_sq_init" }, "id": "CVE-2022-49858-71617ac2", "digest": { "length": 1385.0, "function_hash": "52021456869190502329005543172449175738" }, "signature_version": "v1", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@015e3c0a3b16193aab23beefe4719484b9984c2d" }, { "deprecated": false, "signature_type": "Line", "target": { "file": "drivers/net/ethernet/marvell/octeontx2/nic/otx2_txrx.c" }, "id": "CVE-2022-49858-88f9ab31", "digest": { "line_hashes": [ "270706724616556061810955045135256230241", "169419299191349852145009426019436638308", "31103829702912535628644898067550203248", "270540137835210694218592531593018781829", "132540771366421969821586437419622694823", "188942924881359723049654134069299741159", "311380213238659701057292175807733871524", "137530197154798050671781291449245493013", "24946431443077664038439720953026822481", "268116087759168187069976104698788967137", "102190609179142152724762500940038473803", "45773820044613420482006879303852619601", "270513801013310956712294568907945038733", "59088832419479700193027478488274707263", "120676121425639054430657993640202582022", "96371336524029454342808206889933130566", "276439763994652423053991914262248592813", "107979050730846032724200819413584517983", "149527178361496123156216536109105032542", "31124250945738306071353944866832352894", "95791768900168823039318932275410129692", "304005931841582400900146824110553176967", "19454622729978885749668201815406673357", "312517022301503482601999121902246017175", "308001457414729495661461727596178642236", "15085086678236937996957191587239440151", "283055430933077482443265746361390360116", "304928500217803873839173650818906070081", "335074967350121798827970091145862756510", "87513938264047446091155121976380144267", "222673092333491521730815961476102113120", "120661013140266100704718848533564635219" ], "threshold": 0.9 }, "signature_version": "v1", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@f0dfc4c88ef39be0ba736aa0ce6119263fc19aeb" }, { "deprecated": false, "signature_type": "Function", "target": { "file": "drivers/net/ethernet/marvell/octeontx2/nic/otx2_txrx.c", "function": "otx2_sq_append_skb" }, "id": "CVE-2022-49858-90fbca74", "digest": { "length": 1283.0, "function_hash": "125951206891477291993933402462584406144" }, "signature_version": "v1", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@015e3c0a3b16193aab23beefe4719484b9984c2d" }, { "deprecated": false, "signature_type": "Function", "target": { "file": "drivers/net/ethernet/marvell/octeontx2/nic/otx2_txrx.c", "function": "otx2_tx_napi_handler" }, "id": "CVE-2022-49858-c3b57543", "digest": { "length": 1085.0, "function_hash": "335053455305187050567995082631950773709" }, "signature_version": "v1", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@f0dfc4c88ef39be0ba736aa0ce6119263fc19aeb" }, { "deprecated": false, "signature_type": "Function", "target": { "file": "drivers/net/ethernet/marvell/octeontx2/nic/otx2_common.c", "function": "otx2_sq_init" }, "id": "CVE-2022-49858-e1a5758f", "digest": { "length": 1385.0, "function_hash": "52021456869190502329005543172449175738" }, "signature_version": "v1", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@f0dfc4c88ef39be0ba736aa0ce6119263fc19aeb" }, { "deprecated": false, "signature_type": "Function", "target": { "file": "drivers/net/ethernet/marvell/octeontx2/nic/otx2_txrx.c", "function": "otx2_sq_append_skb" }, "id": "CVE-2022-49858-ed707b35", "digest": { "length": 1283.0, "function_hash": "125951206891477291993933402462584406144" }, "signature_version": "v1", "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@f0dfc4c88ef39be0ba736aa0ce6119263fc19aeb" } ] }