CVE-2022-48816

Published: Jul 16, 2024

Modified: Jun 1, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: SUNRPC: lock against ->sock changing during sysfs read ->sock can be set to NULL asynchronously unless ->recv_mutex is held. So it is important to hold that mutex. Otherwise a sysfs read can trigger an oops. Commit 17f09d3f619a ("SUNRPC: Check if the xprt is connected before handling sysfs reads") appears to attempt to fix this problem, but it only narrows the race window.

Vendor	Product	Versions
Linux	Linux	affected `a8482488a7d6d320f63a9ee1912dbb5ae5b80a61 - < fdc42287ae3f8a35cc2098307f52d7864b4bc8ed` affected `a8482488a7d6d320f63a9ee1912dbb5ae5b80a61 - < 9482ab4540f5bcc869b44c067ae99b5fca16bd07` affected `a8482488a7d6d320f63a9ee1912dbb5ae5b80a61 - < b49ea673e119f59c71645e2f65b3ccad857c90ee` affected `21a2be1a5145d072deedc7cdc5b2d17380abea75` affected `77876473912d1bf1ed16bffa1674e5ff0f499f25` +2 more versions
Linux	Linux	affected `5.14` unaffected `0 - < 5.14` unaffected `5.15.209 - <= 5.15.` unaffected `5.16.10 - <= 5.16.` unaffected `5.17 - <= *`

References

https://git.kernel.org/stable/c/fdc42287ae3f8a35cc2098307f52d7864b4bc8ed

https://git.kernel.org/stable/c/9482ab4540f5bcc869b44c067ae99b5fca16bd07

https://git.kernel.org/stable/c/b49ea673e119f59c71645e2f65b3ccad857c90ee

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2022-48816

Description

Affected Products

References