Ubuntu.comUB:CVE-2022-48770CVE-2022-48770
AI Score
Confidence
High
In the Linux kernel, the following vulnerability has been resolved: bpf:
Guard against accessing NULL pt_regs in bpf_get_task_stack() task_pt_regs()
can return NULL on powerpc for kernel threads. This is then used in
__bpf_get_stack() to check for user mode, resulting in a kernel oops. Guard
against this by checking return value of task_pt_regs() before trying to
obtain the call chain.
References
git.kernel.org/linus/b992f01e66150fc5e90be4a96f5eb8e634c8249e (5.17-rc2)
git.kernel.org/stable/c/0bcd484587b3b3092e448d27dc369e347e1810c3
git.kernel.org/stable/c/b82ef4985a6d05e80f604624332430351df7b79a
git.kernel.org/stable/c/b992f01e66150fc5e90be4a96f5eb8e634c8249e
git.kernel.org/stable/c/ff6bdc205fd0a83bd365405d4e31fb5905826996
launchpad.net/bugs/cve/CVE-2022-48770
nvd.nist.gov/vuln/detail/CVE-2022-48770
security-tracker.debian.org/tracker/CVE-2022-48770
www.cve.org/CVERecord?id=CVE-2022-48770
Related
