CVE-2022-49925 | THREATINT

Description

In the Linux kernel, the following vulnerability has been resolved: RDMA/core: Fix null-ptr-deref in ib_core_cleanup() KASAN reported a null-ptr-deref error: KASAN: null-ptr-deref in range [0x0000000000000118-0x000000000000011f] CPU: 1 PID: 379 Hardware name: QEMU Standard PC (i440FX + PIIX, 1996) RIP: 0010:destroy_workqueue+0x2f/0x740 RSP: 0018:ffff888016137df8 EFLAGS: 00000202 ... Call Trace: ib_core_cleanup+0xa/0xa1 [ib_core] __do_sys_delete_module.constprop.0+0x34f/0x5b0 do_syscall_64+0x3a/0x90 entry_SYSCALL_64_after_hwframe+0x63/0xcd RIP: 0033:0x7fa1a0d221b7 ... It is because the fail of roce_gid_mgmt_init() is ignored: ib_core_init() roce_gid_mgmt_init() gid_cache_wq = alloc_ordered_workqueue # fail ... ib_core_cleanup() roce_gid_mgmt_cleanup() destroy_workqueue(gid_cache_wq) # destroy an unallocated wq Fix this by catching the fail of roce_gid_mgmt_init() in ib_core_init().

Reserved 2025-05-01 | Published 2025-05-01 | Updated 2025-05-04 | Assigner Linux

Product status

Default status

unaffected

03db3a2d81e6e84f3ed3cb9e087cae17d762642b before af8fb5a0600e9ae29950e9422a032c3c22649ee5

affected

03db3a2d81e6e84f3ed3cb9e087cae17d762642b before d360e875c011a005628525bf290322058927e7dc

affected

03db3a2d81e6e84f3ed3cb9e087cae17d762642b before 6b3d5dcb12347f3518308c2c9d2cf72453a3e1e5

affected

03db3a2d81e6e84f3ed3cb9e087cae17d762642b before ab817f75e5e0fa58d9be0825da6a7b7d8a1fa1d9

affected

03db3a2d81e6e84f3ed3cb9e087cae17d762642b before 07c0d131cc0fe1f3981a42958fc52d573d303d89

affected

Default status

affected

4.3

affected

Any version before 4.3

unaffected

5.4.224

unaffected

5.10.154

unaffected

5.15.78

unaffected

6.0.8

unaffected

6.1

unaffected

References

git.kernel.org/...c/af8fb5a0600e9ae29950e9422a032c3c22649ee5

git.kernel.org/...c/d360e875c011a005628525bf290322058927e7dc

git.kernel.org/...c/6b3d5dcb12347f3518308c2c9d2cf72453a3e1e5

git.kernel.org/...c/ab817f75e5e0fa58d9be0825da6a7b7d8a1fa1d9

git.kernel.org/...c/07c0d131cc0fe1f3981a42958fc52d573d303d89

cve.org (CVE-2022-49925)

nvd.nist.gov (CVE-2022-49925)

Download JSON