CVE-2022-48636
Published: Apr 28, 2024
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: s390/dasd: fix Oops in dasd_alias_get_start_dev due to missing pavgroup Fix Oops in dasd_alias_get_start_dev() function caused by the pavgroup pointer being NULL. The pavgroup pointer is checked on the entrance of the function but without the lcu->lock being held. Therefore there is a race window between dasd_alias_get_start_dev() and _lcu_update() which sets pavgroup to NULL with the lcu->lock held. Fix by checking the pavgroup pointer with lcu->lock held.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 8e09f21574ea3028d5629e5de759e0b196c690c5 - < d86b4267834e6d4af62e3073e48166e349ab1b70affected 8e09f21574ea3028d5629e5de759e0b196c690c5 - < 49f401a98b318761ca2e15d4c7869a20043fbed4affected 8e09f21574ea3028d5629e5de759e0b196c690c5 - < aaba5ff2742043705bc4c02fd0b2b246e2e16da1affected 8e09f21574ea3028d5629e5de759e0b196c690c5 - < 2e473351400e3dd66f0b71eddcef82ee45a584c1affected 8e09f21574ea3028d5629e5de759e0b196c690c5 - < f5fcc9d6d71d9ff7fdbdd4b89074e6e24fffc20b+3 more versions |
Linux | Linux | affected 2.6.25unaffected 0 - < 2.6.25unaffected 4.9.330 - <= 4.9.*unaffected 4.14.295 - <= 4.14.*unaffected 4.19.260 - <= 4.19.*+5 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now