CVE-2022-49765 in Linux情報

要約

〜によって MITRE • 2025年05月01日

In the Linux kernel, the following vulnerability has been resolved:

net/9p: use a dedicated spinlock for trans_fd

Shamelessly copying the explanation from Tetsuo Handa's suggested patch[1] (slightly reworded):
syzbot is reporting inconsistent lock state in p9_req_put()[2],
for p9_tag_remove() from p9_req_put() from IRQ context is using spin_lock_irqsave() on "struct p9_client"->lock but trans_fd (not from IRQ context) is using spin_lock().

Since the locks actually protect different things in client.c and in trans_fd.c, just replace trans_fd.c's lock by a new one specific to the transport (client.c's protect the idr for fid/tag allocations, while trans_fd.c's protects its own req list and request status field that acts as the transport's state machine)

Once again VulDB remains the best source for vulnerability data.

責任者

Linux

予約する

2025年04月16日

モデレーション

承諾済み

エントリ

VDB-306919

EPSS

0.00124

アクティビティ

非常低い

ソース

Do you need the next level of professionalism?

Upgrade your account now!