CVE-2022-50657
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
riscv: mm: add missing memcpy in kasan_init
Hi Atish,
It seems that the panic is due to the missing memcpy during kasan_init. Could you please check whether this patch is helpful?
When doing kasan_populate, the new allocated base_pud/base_p4d should contain kasan_early_shadow_{pud, p4d}'s content. Add the missing memcpy to avoid page fault when read/write kasan shadow region.
Tested on:
- qemu with sv57 and CONFIG_KASAN on.
- qemu with sv48 and CONFIG_KASAN on.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 8fbdccd2b17335e1881a23865e98c63fcc345938 < ff0f6becf3a6f817838b6f80a2c9cca43dce0576 | affected |
| Linux | Linux | 8fbdccd2b17335e1881a23865e98c63fcc345938 < 9f2ac64d6ca60db99132e08628ac2899f956a0ec | affected |
| Linux | Linux | 5.18 | affected |
| Linux | Linux | 0 < 5.18 | unaffected |
| Linux | Linux | 6.0.7 <= 6.0.* | unaffected |
| Linux | Linux | 6.1 <= * | unaffected |
Weaknesses
References
- https://git.kernel.org/stable/c/ff0f6becf3a6f817838b6f80a2c9cca43dce0576
- https://git.kernel.org/stable/c/9f2ac64d6ca60db99132e08628ac2899f956a0ec
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.