CVE-2022-49991

Summary

In the Linux kernel, the following vulnerability has been resolved:

mm/hugetlb: avoid corrupting page->mapping in hugetlb_mcopy_atomic_pte

In MCOPY_ATOMIC_CONTINUE case with a non-shared VMA, pages in the page cache are installed in the ptes. But hugepage_add_new_anon_rmap is called for them mistakenly because they're not vm_shared. This will corrupt the page->mapping used by page cache code.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxf619147104c8ea71e120e4936d2b68ec11a1e527 < da60ddd80d09f8371fbba1a238a4b318d13ba698affected
LinuxLinuxf619147104c8ea71e120e4936d2b68ec11a1e527 < 3ada1b3e58db255a14ec73a59d7913e84dc5a8a4affected
LinuxLinuxf619147104c8ea71e120e4936d2b68ec11a1e527 < ab74ef708dc51df7cf2b8a890b9c6990fac5c0c6affected
LinuxLinux5.13affected
LinuxLinux0 < 5.13unaffected
LinuxLinux5.15.65 <= 5.15.*unaffected
LinuxLinux5.19.6 <= 5.19.*unaffected
LinuxLinux6.0 <= *unaffected

Weaknesses

References