CVE-2022-48799
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
perf: Fix list corruption in perf_cgroup_switch()
There's list corruption on cgrp_cpuctx_list. This happens on the following path:
perf_cgroup_switch: list_for_each_entry(cgrp_cpuctx_list) cpu_ctx_sched_in ctx_sched_in ctx_pinned_sched_in merge_sched_in perf_cgroup_event_disable: remove the event from the list
Use list_for_each_entry_safe() to allow removing an entry during iteration.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 058fe1c0440e68a1ba3c2270ae43e9f0298b27d8 < 5d76ed4223403f90421782adb2f20a9ecbc93186 | affected |
| Linux | Linux | 058fe1c0440e68a1ba3c2270ae43e9f0298b27d8 < 30d9f3cbe47e1018ddc8069ac5b5c9e66fbdf727 | affected |
| Linux | Linux | 058fe1c0440e68a1ba3c2270ae43e9f0298b27d8 < a2ed7b29d0673ba361546e2d87dbbed149456c45 | affected |
| Linux | Linux | 058fe1c0440e68a1ba3c2270ae43e9f0298b27d8 < f6b5d51976fcefef5732da3e3feb3ccff680f7c8 | affected |
| Linux | Linux | 058fe1c0440e68a1ba3c2270ae43e9f0298b27d8 < 7969fe91c9830e045901970e9d755b7505881d4a | affected |
| Linux | Linux | 058fe1c0440e68a1ba3c2270ae43e9f0298b27d8 < 2142bc1469a316fddd10012d76428f7265258f81 | affected |
| Linux | Linux | 058fe1c0440e68a1ba3c2270ae43e9f0298b27d8 < 5f4e5ce638e6a490b976ade4a40017b40abb2da0 | affected |
| Linux | Linux | 4.11 | affected |
| Linux | Linux | 0 < 4.11 | unaffected |
| Linux | Linux | 4.14.267 <= 4.14.* | unaffected |
| Linux | Linux | 4.19.230 <= 4.19.* | unaffected |
| Linux | Linux | 5.4.180 <= 5.4.* | unaffected |
| Linux | Linux | 5.10.101 <= 5.10.* | unaffected |
| Linux | Linux | 5.15.24 <= 5.15.* | unaffected |
| Linux | Linux | 5.16.10 <= 5.16.* | unaffected |
| Linux | Linux | 5.17 <= * | unaffected |
Weaknesses
ADP Enrichment
CVE Program Container
Additional References
- https://git.kernel.org/stable/c/5d76ed4223403f90421782adb2f20a9ecbc93186
- https://git.kernel.org/stable/c/30d9f3cbe47e1018ddc8069ac5b5c9e66fbdf727
- https://git.kernel.org/stable/c/a2ed7b29d0673ba361546e2d87dbbed149456c45
- https://git.kernel.org/stable/c/f6b5d51976fcefef5732da3e3feb3ccff680f7c8
- https://git.kernel.org/stable/c/7969fe91c9830e045901970e9d755b7505881d4a
- https://git.kernel.org/stable/c/2142bc1469a316fddd10012d76428f7265258f81
- https://git.kernel.org/stable/c/5f4e5ce638e6a490b976ade4a40017b40abb2da0
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
References
- https://git.kernel.org/stable/c/5d76ed4223403f90421782adb2f20a9ecbc93186
- https://git.kernel.org/stable/c/30d9f3cbe47e1018ddc8069ac5b5c9e66fbdf727
- https://git.kernel.org/stable/c/a2ed7b29d0673ba361546e2d87dbbed149456c45
- https://git.kernel.org/stable/c/f6b5d51976fcefef5732da3e3feb3ccff680f7c8
- https://git.kernel.org/stable/c/7969fe91c9830e045901970e9d755b7505881d4a
- https://git.kernel.org/stable/c/2142bc1469a316fddd10012d76428f7265258f81
- https://git.kernel.org/stable/c/5f4e5ce638e6a490b976ade4a40017b40abb2da0
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.