Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistLinuxCVELIST:CVE-2022-48715
HistoryJun 20, 2024 - 11:13 a.m.

CVE-2022-48715 scsi: bnx2fc: Make bnx2fc_recv_frame() mp safe

2024-06-2011:13:08
Linux
www.cve.org
linux kernel vulnerability

0.0004 Low

EPSS

Percentile

13.1%

JSON

In the Linux kernel, the following vulnerability has been resolved:

scsi: bnx2fc: Make bnx2fc_recv_frame() mp safe

Running tests with a debug kernel shows that bnx2fc_recv_frame() is
modifying the per_cpu lport stats counters in a non-mpsafe way. Just boot
a debug kernel and run the bnx2fc driver with the hardware enabled.

[ 1391.699147] BUG: using smp_processor_id() in preemptible [00000000] code: bnx2fc_
[ 1391.699160] caller is bnx2fc_recv_frame+0xbf9/0x1760 [bnx2fc]
[ 1391.699174] CPU: 2 PID: 4355 Comm: bnx2fc_l2_threa Kdump: loaded Tainted: G B
[ 1391.699180] Hardware name: HP ProLiant DL120 G7, BIOS J01 07/01/2013
[ 1391.699183] Call Trace:
[ 1391.699188] dump_stack_lvl+0x57/0x7d
[ 1391.699198] check_preemption_disabled+0xc8/0xd0
[ 1391.699205] bnx2fc_recv_frame+0xbf9/0x1760 [bnx2fc]
[ 1391.699215] ? do_raw_spin_trylock+0xb5/0x180
[ 1391.699221] ? bnx2fc_npiv_create_vports.isra.0+0x4e0/0x4e0 [bnx2fc]
[ 1391.699229] ? bnx2fc_l2_rcv_thread+0xb7/0x3a0 [bnx2fc]
[ 1391.699240] bnx2fc_l2_rcv_thread+0x1af/0x3a0 [bnx2fc]
[ 1391.699250] ? bnx2fc_ulp_init+0xc0/0xc0 [bnx2fc]
[ 1391.699258] kthread+0x364/0x420
[ 1391.699263] ? _raw_spin_unlock_irq+0x24/0x50
[ 1391.699268] ? set_kthread_struct+0x100/0x100
[ 1391.699273] ret_from_fork+0x22/0x30

Restore the old get_cpu/put_cpu code with some modifications to reduce the
size of the critical section.

CNA Affected

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "drivers/scsi/bnx2fc/bnx2fc_fcoe.c"
    ],
    "versions": [
      {
        "version": "d576a5e80cd0",
        "lessThan": "3a345198a7c2",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "d576a5e80cd0",
        "lessThan": "471085571f92",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "d576a5e80cd0",
        "lessThan": "003bcee66a8f",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "d576a5e80cd0",
        "lessThan": "53e4f71763c6",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "d576a5e80cd0",
        "lessThan": "ec4334152dae",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "d576a5e80cd0",
        "lessThan": "2f5a1ac68bdf",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "d576a5e80cd0",
        "lessThan": "2d24336c7214",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "d576a5e80cd0",
        "lessThan": "936bd03405fc",
        "status": "affected",
        "versionType": "git"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "affected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "drivers/scsi/bnx2fc/bnx2fc_fcoe.c"
    ],
    "versions": [
      {
        "version": "3.16",
        "status": "affected"
      },
      {
        "version": "0",
        "lessThan": "3.16",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "4.9.300",
        "lessThanOrEqual": "4.9.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "4.14.265",
        "lessThanOrEqual": "4.14.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "4.19.228",
        "lessThanOrEqual": "4.19.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "5.4.178",
        "lessThanOrEqual": "5.4.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "5.10.99",
        "lessThanOrEqual": "5.10.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "5.15.22",
        "lessThanOrEqual": "5.15.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "5.16.8",
        "lessThanOrEqual": "5.16.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "5.17",
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "versionType": "original_commit_for_fix"
      }
    ]
  }
]

Related

ubuntucve 1
nvd 1
debiancve 1
redhatcve 1
cve 1
ubuntucve
ubuntucve
CVE-2022-48715
2024-06-20 00:00:00
nvd
nvd
CVE-2022-48715
2024-06-20 11:15:55
debiancve
debiancve
CVE-2022-48715
2024-06-20 11:15:55
redhatcve
redhatcve
CVE-2022-48715
2024-06-20 12:27:29
cve
cve
CVE-2022-48715
2024-06-20 11:15:55

0.0004 Low

EPSS

Percentile

13.1%

JSON
Related for CVELIST:CVE-2022-48715
ubuntucve1nvd1debiancve1redhatcve1cve1