CVE-2023-54262
CVE-2023-54262 affects the Linux kernel’s mlx5 networking stack (net/mlx5e). The issue arises from cloning flow post-action attributes twice: mlx5e_clone_flow_attr_for_post_act() already clones, and mlx5e_tc_post_act_add() clones again, creating a double-copy that can lead to a use-after-free in ...