CVE-2022-49957
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
kcm: fix strp_init() order and cleanup
strp_init() is called just a few lines above this csk->sk_user_data check, it also initializes strp->work etc., therefore, it is unnecessary to call strp_done() to cancel the freshly initialized work.
And if sk_user_data is already used by KCM, psock->strp should not be touched, particularly strp->work state, so we need to move strp_init() after the csk->sk_user_data check.
This also makes a lockdep warning reported by syzbot go away.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 44890e9ff771ef11777b2d1ebf8589255eb12502 < 473f394953216614087f4179e55cdf0cf616a13b | affected |
| Linux | Linux | e5571240236c5652f3e079b1d5866716a7ad819c < a8a0c321319ad64a5427d6172cd9c23b4d6ca1e8 | affected |
| Linux | Linux | e5571240236c5652f3e079b1d5866716a7ad819c < 0946ff31d1a8778787bf6708beb20f38715267cc | affected |
| Linux | Linux | e5571240236c5652f3e079b1d5866716a7ad819c < 1b6666964ca1de93a7bf06e122bcf3616dbd33a9 | affected |
| Linux | Linux | e5571240236c5652f3e079b1d5866716a7ad819c < 55fb8c3baa8071c5d533a9ad48624e44e2a04ef5 | affected |
| Linux | Linux | e5571240236c5652f3e079b1d5866716a7ad819c < f865976baa85915c7672f351b74d5974b93215f6 | affected |
| Linux | Linux | e5571240236c5652f3e079b1d5866716a7ad819c < 8fc29ff3910f3af08a7c40a75d436b5720efe2bf | affected |
| Linux | Linux | 085cbbda4b4cc7dd2ba63806346881c2c2e10107 | affected |
| Linux | Linux | 383250363daf01eb7aa3728c09ef8a4f6d8a3252 | affected |
| Linux | Linux | 19042316b9e12c93bf334a04d4dd7a4e846c7311 | affected |
| Linux | Linux | 4.14.22 < 4.14.293 | affected |
| Linux | Linux | 4.9.84 < 4.10 | affected |
| Linux | Linux | 4.9.100 < 4.10 | affected |
| Linux | Linux | 4.15 | affected |
| Linux | Linux | 0 < 4.15 | unaffected |
| Linux | Linux | 4.14.293 <= 4.14.* | unaffected |
| Linux | Linux | 4.19.258 <= 4.19.* | unaffected |
| Linux | Linux | 5.4.213 <= 5.4.* | unaffected |
| Linux | Linux | 5.10.142 <= 5.10.* | unaffected |
| Linux | Linux | 5.15.66 <= 5.15.* | unaffected |
| Linux | Linux | 5.19.8 <= 5.19.* | unaffected |
| Linux | Linux | 6.0 <= * | unaffected |
Weaknesses
References
- https://git.kernel.org/stable/c/473f394953216614087f4179e55cdf0cf616a13b
- https://git.kernel.org/stable/c/a8a0c321319ad64a5427d6172cd9c23b4d6ca1e8
- https://git.kernel.org/stable/c/0946ff31d1a8778787bf6708beb20f38715267cc
- https://git.kernel.org/stable/c/1b6666964ca1de93a7bf06e122bcf3616dbd33a9
- https://git.kernel.org/stable/c/55fb8c3baa8071c5d533a9ad48624e44e2a04ef5
- https://git.kernel.org/stable/c/f865976baa85915c7672f351b74d5974b93215f6
- https://git.kernel.org/stable/c/8fc29ff3910f3af08a7c40a75d436b5720efe2bf
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.