Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistLinuxCVELIST:CVE-2022-48714
HistoryJun 20, 2024 - 11:13 a.m.

CVE-2022-48714 bpf: Use VM_MAP instead of VM_ALLOC for ringbuf

2024-06-2011:13:08
Linux
www.cve.org
1
linux kernel
vulnerability
patched
vm_map
ringbuf
vmap

0.0004 Low

EPSS

Percentile

15.7%

JSON

In the Linux kernel, the following vulnerability has been resolved:

bpf: Use VM_MAP instead of VM_ALLOC for ringbuf

After commit 2fd3fb0be1d1 (“kasan, vmalloc: unpoison VM_ALLOC pages
after mapping”), non-VM_ALLOC mappings will be marked as accessible
in __get_vm_area_node() when KASAN is enabled. But now the flag for
ringbuf area is VM_ALLOC, so KASAN will complain out-of-bound access
after vmap() returns. Because the ringbuf area is created by mapping
allocated pages, so use VM_MAP instead.

After the change, info in /proc/vmallocinfo also changes from
[start]-[end] 24576 ringbuf_map_alloc+0x171/0x290 vmalloc user
to
[start]-[end] 24576 ringbuf_map_alloc+0x171/0x290 vmap user

CNA Affected

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "kernel/bpf/ringbuf.c"
    ],
    "versions": [
      {
        "version": "457f44363a88",
        "lessThan": "6304a613a97d",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "457f44363a88",
        "lessThan": "5e457aeab52a",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "457f44363a88",
        "lessThan": "d578933f6226",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "457f44363a88",
        "lessThan": "b293dcc473d2",
        "status": "affected",
        "versionType": "git"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "affected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "kernel/bpf/ringbuf.c"
    ],
    "versions": [
      {
        "version": "5.8",
        "status": "affected"
      },
      {
        "version": "0",
        "lessThan": "5.8",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "5.10.99",
        "lessThanOrEqual": "5.10.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "5.15.22",
        "lessThanOrEqual": "5.15.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "5.16.8",
        "lessThanOrEqual": "5.16.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "5.17",
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "versionType": "original_commit_for_fix"
      }
    ]
  }
]

Related

ubuntucve 1
redhatcve 1
nvd 1
debiancve 1
cve 1
ubuntucve
ubuntucve
CVE-2022-48714
2024-06-20 00:00:00
redhatcve
redhatcve
CVE-2022-48714
2024-06-20 12:27:19
nvd
nvd
CVE-2022-48714
2024-06-20 11:15:55
debiancve
debiancve
CVE-2022-48714
2024-06-20 11:15:55
cve
cve
CVE-2022-48714
2024-06-20 11:15:55

0.0004 Low

EPSS

Percentile

15.7%

JSON
Related for CVELIST:CVE-2022-48714
ubuntucve1redhatcve1nvd1debiancve1cve1