CVE-2022-49931
Published: May 1, 2025
Modified: May 23, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: IB/hfi1: Correctly move list in sc_disable() Commit 13bac861952a ("IB/hfi1: Fix abba locking issue with sc_disable()") incorrectly tries to move a list from one list head to another. The result is a kernel crash. The crash is triggered when a link goes down and there are waiters for a send to complete. The following signature is seen: BUG: kernel NULL pointer dereference, address: 0000000000000030 [...] Call Trace: sc_disable+0x1ba/0x240 [hfi1] pio_freeze+0x3d/0x60 [hfi1] handle_freeze+0x27/0x1b0 [hfi1] process_one_work+0x1b0/0x380 ? process_one_work+0x380/0x380 worker_thread+0x30/0x360 ? process_one_work+0x380/0x380 kthread+0xd7/0x100 ? kthread_complete_and_exit+0x20/0x20 ret_from_fork+0x1f/0x30 The fix is to use the correct call to move the list.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected d997d4e4365f7e59cf6b59c70f966c56d704b64f - < 25760a41e3802f54aadcc31385543665ab349b8eaffected d98883f6c33e0d960afedcecaa92fc2b61fec383 - < 7c4260f8f188df32414a5ecad63e8b934c2aa3f0affected 13bac861952a78664907a0f927d3e874e9a59034 - < ba95409d6b580501ff6d78efd00064f7df669926affected 13bac861952a78664907a0f927d3e874e9a59034 - < b8bcff99b07cc175a6ee12a52db51cdd2229586caffected 13bac861952a78664907a0f927d3e874e9a59034 - < 1afac08b39d85437187bb2a92d89a741b1078f55+4 more versions |
Linux | Linux | affected 5.15unaffected 0 - < 5.15unaffected 5.4.224 - <= 5.4.*unaffected 5.10.154 - <= 5.10.*unaffected 5.15.78 - <= 5.15.*+2 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now