CVE-2023-54262 net/mlx5e: Don't clone flow post action attributes second time

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Don't clone flow post action attributes second time The code already clones post action attributes in mlx5ecloneflowattrforpostact. Creating another copy in mlx5etcpostactadd is a erroneous leftover from original...

CVE-2023-54262

CVE-2023-54262 affects the Linux kernel’s mlx5 networking stack (net/mlx5e). The issue arises from cloning flow post-action attributes twice: mlx5e_clone_flow_attr_for_post_act() already clones, and mlx5e_tc_post_act_add() clones again, creating a double-copy that can lead to a use-after-free in ...

CVE-2023-54262

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Don't clone flow post action attributes second time The code already clones post action attributes in mlx5ecloneflowattrforpostact. Creating another copy in mlx5etcpostactadd is a erroneous leftover from original...