CVE-2023-53720

*** Pendiente de traducción *** In the Linux kernel, the following vulnerability has been resolved:<br /> <br /> net/mlx5e: Release the label when replacing existing ct entry<br /> <br /> Cited commit doesn&amp;#39;t release the label mapping when replacing existing ct<br /> entry which leads to following memleak report:<br /> <br /> unreferenced object 0xffff8881854cf280 (size 96):<br /> comm "kworker/u48:74", pid 23093, jiffies 4296664564 (age 175.944s)<br /> hex dump (first 32 bytes):<br /> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................<br /> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................<br /> backtrace:<br /> [] __kmalloc+0x4b/0x1c0<br /> [] mapping_add+0x6e8/0xc90 [mlx5_core]<br /> [] mlx5_get_label_mapping+0x66/0xe0 [mlx5_core]<br /> [] mlx5_tc_ct_entry_create_mod_hdr+0x1c4/0xf50 [mlx5_core]<br /> [] mlx5_tc_ct_entry_add_rule+0x16f/0xaf0 [mlx5_core]<br /> [] mlx5_tc_ct_block_flow_offload_add+0x10cb/0x1f90 [mlx5_core]<br /> [] mlx5_tc_ct_block_flow_offload+0x14a/0x630 [mlx5_core]<br /> [] nf_flow_offload_tuple+0x1a3/0x390 [nf_flow_table]<br /> [] flow_offload_work_handler+0x257/0xd30 [nf_flow_table]<br /> [] process_one_work+0x7c2/0x13e0<br /> [] worker_thread+0x59d/0xec0<br /> [] kthread+0x28f/0x330<br /> [] ret_from_fork+0x1f/0x30<br /> <br /> Fix the issue by correctly releasing the label mapping.