CVE-2022-50142

Summary

In the Linux kernel, the following vulnerability has been resolved:

intel_th: msu: Fix vmalloced buffers

After commit f5ff79fddf0e ("dma-mapping: remove CONFIG_DMA_REMAP") there's a chance of DMA buffer getting allocated via vmalloc(), which messes up the mmapping code:

> RIP: msc_mmap_fault [intel_th_msu] > Call Trace: > <TASK> > __do_fault > do_fault …

Fix this by accounting for vmalloc possibility.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxba39bd8306057fb343dfb75d93a76d824b625236 < b5d924cb4c7b952eaa61622f14427723a78137a3affected
LinuxLinuxba39bd8306057fb343dfb75d93a76d824b625236 < 6ae2881c1d1fa0e33f4763b7c786f8ef05a9c828affected
LinuxLinuxba39bd8306057fb343dfb75d93a76d824b625236 < 566887bad7ff2297d6b3f9659c702ba075f3d62daffected
LinuxLinuxba39bd8306057fb343dfb75d93a76d824b625236 < 0ed72c6bc632cbf8d979ac60f982ff84b7bb610aaffected
LinuxLinuxba39bd8306057fb343dfb75d93a76d824b625236 < 4914c50670b6a531e2cb17cd984cc565b4681312affected
LinuxLinuxba39bd8306057fb343dfb75d93a76d824b625236 < ac12ad3ccf6d386e64a9d6a890595a2509d24eddaffected
LinuxLinux5.2affected
LinuxLinux0 < 5.2unaffected
LinuxLinux5.4.211 <= 5.4.*unaffected
LinuxLinux5.10.137 <= 5.10.*unaffected
LinuxLinux5.15.61 <= 5.15.*unaffected
LinuxLinux5.18.18 <= 5.18.*unaffected
LinuxLinux5.19.2 <= 5.19.*unaffected
LinuxLinux6.0 <= *unaffected

Weaknesses

References