Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistLinuxCVELIST:CVE-2022-48939
HistoryAug 22, 2024 - 3:31 a.m.

CVE-2022-48939 bpf: Add schedule points in batch ops

2024-08-2203:31:34
Linux
www.cve.org
3
linux kernel
vulnerability
cve-2022-48939
schedule points
bpf batch operations
soft lockups
generic_map_delete_batch
optimization

EPSS

0

Percentile

16.4%

JSON

In the Linux kernel, the following vulnerability has been resolved:

bpf: Add schedule points in batch ops

syzbot reported various soft lockups caused by bpf batch operations.

INFO: task kworker/1:1:27 blocked for more than 140 seconds.
INFO: task hung in rcu_barrier

Nothing prevents batch ops to process huge amount of data,
we need to add schedule points in them.

Note that maybe_wait_bpf_programs(map) calls from
generic_map_delete_batch() can be factorized by moving
the call after the loop.

This will be done later in -next tree once we get this fix merged,
unless there is strong opinion doing this optimization sooner.

CNA Affected

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "kernel/bpf/syscall.c"
    ],
    "versions": [
      {
        "version": "aa2e93b8e58e",
        "lessThan": "7ef94bfb08fb",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "aa2e93b8e58e",
        "lessThan": "8628f489b749",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "aa2e93b8e58e",
        "lessThan": "7e8099967d0e",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "aa2e93b8e58e",
        "lessThan": "75134f16e7dd",
        "status": "affected",
        "versionType": "git"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "affected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "kernel/bpf/syscall.c"
    ],
    "versions": [
      {
        "version": "5.6",
        "status": "affected"
      },
      {
        "version": "0",
        "lessThan": "5.6",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "5.10.103",
        "lessThanOrEqual": "5.10.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "5.15.26",
        "lessThanOrEqual": "5.15.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "5.16.12",
        "lessThanOrEqual": "5.16.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "5.17",
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "versionType": "original_commit_for_fix"
      }
    ]
  }
]

Related

osv 3
debiancve 1
ubuntucve 1
nvd 1
cve 1
redhatcve 1
vulnrichment 1
redos 1
nessus 2
osv
osv
CVE-2022-48939
2024-08-22 04:15:17
Security update for the Linux Kernel
2024-09-11 15:39:03
Security update for the Linux Kernel
2024-09-10 08:46:37
debiancve
debiancve
CVE-2022-48939
2024-08-22 04:15:17
ubuntucve
ubuntucve
CVE-2022-48939
2024-08-22 00:00:00
nvd
nvd
CVE-2022-48939
2024-08-22 04:15:17
cve
cve
CVE-2022-48939
2024-08-22 04:15:17
redhatcve
redhatcve
CVE-2022-48939
2024-08-22 15:16:43
vulnrichment
vulnrichment
CVE-2022-48939 bpf: Add schedule points in batch ops
2024-08-22 03:31:34
redos
redos
ROS-20240828-07
2024-08-28 00:00:00
nessus
nessus
SUSE SLES15 / openSUSE 15 Security Update : kernel (SUSE-SU-2024:3209-1)
2024-09-12 00:00:00
SUSE SLES15 / openSUSE 15 Security Update : kernel (SUSE-SU-2024:3190-1)
2024-09-11 00:00:00

EPSS

0

Percentile

16.4%

JSON
Related for CVELIST:CVE-2022-48939
osv3debiancve1ubuntucve1nvd1cve1redhatcve1vulnrichment1redos1nessus2