CVE-2022-50096

Summary

In the Linux kernel, the following vulnerability has been resolved:

x86/kprobes: Update kcb status flag after singlestepping

Fix kprobes to update kcb (kprobes control block) status flag to KPROBE_HIT_SSDONE even if the kp->post_handler is not set.

This bug may cause a kernel panic if another INT3 user runs right after kprobes because kprobe_int3_handler() misunderstands the INT3 is kprobe's single stepping INT3.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxba7d1dae9fe866abe74bb1e849fb85983b7c4c37 < edc2ac7c7265b33660fa0190898966b49966b855affected
LinuxLinux6256e668b7af9d81472e03c6a171630c08f8858a < 1cbf3882cb372bbe752efd7c3045ca1c9ab40ac6affected
LinuxLinux6256e668b7af9d81472e03c6a171630c08f8858a < b9c3401f7cac6ae291a16784dadcd1bf116218feaffected
LinuxLinux6256e668b7af9d81472e03c6a171630c08f8858a < 663cdda2716b70751df9c7e60b81bd0850fdfe3caffected
LinuxLinux6256e668b7af9d81472e03c6a171630c08f8858a < dec8784c9088b131a1523f582c2194cfc8107dc0affected
LinuxLinux5.13affected
LinuxLinux0 < 5.13unaffected
LinuxLinux5.15.61 <= 5.15.*unaffected
LinuxLinux5.18.18 <= 5.18.*unaffected
LinuxLinux5.19.2 <= 5.19.*unaffected
LinuxLinux6.0 <= *unaffected

Weaknesses

References