CVE-2022-49675
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2022-49675
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-49675.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2022-49675
- Downstream
- Related
- Published
- 2025-02-26T02:24:07Z
- Modified
- 2025-10-21T11:01:30.823015Z
- Summary
- tick/nohz: unexport __init-annotated tick_nohz_full_setup()
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
tick/nohz: unexport _init-annotated ticknohzfullsetup()
EXPORTSYMBOL and _init is a bad combination because the .init.text section is freed up after the initialization. Hence, modules cannot use symbols annotated __init. The access to a freed symbol may end up with kernel panic.
modpost used to detect it, but it had been broken for a decade.
Commit 28438794aba4 ("modpost: fix section mismatch check for exported init/exit sections") fixed it so modpost started to warn it again, then this showed up:
MODPOST vmlinux.symversWARNING: modpost: vmlinux.o(_ksymtabgpl+ticknohzfullsetup+0x0): Section mismatch in reference from the variable _ksymtabticknohzfullsetup to the function .init.text:ticknohzfullsetup() The symbol ticknohzfullsetup is exported and annotated _init Fix this by removing the _init annotation of ticknohzfullsetup or drop the export.
Drop the export because ticknohzfull_setup() is only called from the built-in code in kernel/sched/isolation.c.
- References
-
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- https://git.kernel.org/stable/c/2390095113e98fc52fffe35c5206d30d9efe3f78
- https://git.kernel.org/stable/c/c4ff3ffe0138234774602152fe67e3a898c615c6
- https://git.kernel.org/stable/c/ea32b27e2f8c58c92bff5ecba7fcf64b97707089
- https://git.kernel.org/stable/c/f4a80ec8c51d68be4b7a7830c510f75080c5e417
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedae9e557b5be2e285f48ee945d9c8faf75d4f6a66Fixedc4ff3ffe0138234774602152fe67e3a898c615c6
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedae9e557b5be2e285f48ee945d9c8faf75d4f6a66Fixedf4a80ec8c51d68be4b7a7830c510f75080c5e417
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedae9e557b5be2e285f48ee945d9c8faf75d4f6a66Fixedea32b27e2f8c58c92bff5ecba7fcf64b97707089
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedae9e557b5be2e285f48ee945d9c8faf75d4f6a66Fixed2390095113e98fc52fffe35c5206d30d9efe3f78
Affected versions
v5.*
v5.10
v5.10-rc1
v5.10-rc2
v5.10-rc3
v5.10-rc4
v5.10-rc5
v5.10-rc6
v5.10-rc7
v5.10.1
v5.10.10
v5.10.100
v5.10.101
v5.10.102
v5.10.103
v5.10.104
v5.10.105
v5.10.106
v5.10.107
v5.10.108
v5.10.109
v5.10.11
v5.10.110
v5.10.111
v5.10.112
v5.10.113
v5.10.114
v5.10.115
v5.10.116
v5.10.117
v5.10.118
v5.10.119
v5.10.12
v5.10.120
v5.10.121
v5.10.122
v5.10.123
v5.10.124
v5.10.125
v5.10.126
v5.10.127
v5.10.13
v5.10.14
v5.10.15
v5.10.16
v5.10.17
v5.10.18
v5.10.19
v5.10.2
v5.10.20
v5.10.21
v5.10.22
v5.10.23
v5.10.24
v5.10.25
v5.10.26
v5.10.27
v5.10.28
v5.10.29
v5.10.3
v5.10.30
v5.10.31
v5.10.32
v5.10.33
v5.10.34
v5.10.35
v5.10.36
v5.10.37
v5.10.38
v5.10.39
v5.10.4
v5.10.40
v5.10.41
v5.10.42
v5.10.43
v5.10.44
v5.10.45
v5.10.46
v5.10.47
v5.10.48
v5.10.49
v5.10.5
v5.10.50
v5.10.51
v5.10.52
v5.10.53
v5.10.54
v5.10.55
v5.10.56
v5.10.57
v5.10.58
v5.10.59
v5.10.6
v5.10.60
v5.10.61
v5.10.62
v5.10.63
v5.10.64
v5.10.65
v5.10.66
v5.10.67
v5.10.68
v5.10.69
v5.10.7
v5.10.70
v5.10.71
v5.10.72
v5.10.73
v5.10.74
v5.10.75
v5.10.76
v5.10.77
v5.10.78
v5.10.79
v5.10.8
v5.10.80
v5.10.81
v5.10.82
v5.10.83
v5.10.84
v5.10.85
v5.10.86
v5.10.87
v5.10.88
v5.10.89
v5.10.9
v5.10.90
v5.10.91
v5.10.92
v5.10.93
v5.10.94
v5.10.95
v5.10.96
v5.10.97
v5.10.98
v5.10.99
v5.11
v5.11-rc1
v5.11-rc2
v5.11-rc3
v5.11-rc4
v5.11-rc5
v5.11-rc6
v5.11-rc7
v5.12
v5.12-rc1
v5.12-rc1-dontuse
v5.12-rc2
v5.12-rc3
v5.12-rc4
v5.12-rc5
v5.12-rc6
v5.12-rc7
v5.12-rc8
v5.13
v5.13-rc1
v5.13-rc2
v5.13-rc3
v5.13-rc4
v5.13-rc5
v5.13-rc6
v5.13-rc7
v5.14
v5.14-rc1
v5.14-rc2
v5.14-rc3
v5.14-rc4
v5.14-rc5
v5.14-rc6
v5.14-rc7
v5.15
v5.15-rc1
v5.15-rc2
v5.15-rc3
v5.15-rc4
v5.15-rc5
v5.15-rc6
v5.15-rc7
v5.15.1
v5.15.10
v5.15.11
v5.15.12
v5.15.13
v5.15.14
v5.15.15
v5.15.16
v5.15.17
v5.15.18
v5.15.19
v5.15.2
v5.15.20
v5.15.21
v5.15.22
v5.15.23
v5.15.24
v5.15.25
v5.15.26
v5.15.27
v5.15.28
v5.15.29
v5.15.3
v5.15.30
v5.15.31
v5.15.32
v5.15.33
v5.15.34
v5.15.35
v5.15.36
v5.15.37
v5.15.38
v5.15.39
v5.15.4
v5.15.40
v5.15.41
v5.15.42
v5.15.43
v5.15.44
v5.15.45
v5.15.46
v5.15.47
v5.15.48
v5.15.49
v5.15.5
v5.15.50
v5.15.51
v5.15.6
v5.15.7
v5.15.8
v5.15.9
v5.16
v5.16-rc1
v5.16-rc2
v5.16-rc3
v5.16-rc4
v5.16-rc5
v5.16-rc6
v5.16-rc7
v5.16-rc8
v5.17
v5.17-rc1
v5.17-rc2
v5.17-rc3
v5.17-rc4
v5.17-rc5
v5.17-rc6
v5.17-rc7
v5.17-rc8
v5.18
v5.18-rc1
v5.18-rc2
v5.18-rc3
v5.18-rc4
v5.18-rc5
v5.18-rc6
v5.18-rc7
v5.18.1
v5.18.2
v5.18.3
v5.18.4
v5.18.5
v5.18.6
v5.18.7
v5.18.8
v5.19-rc1
v5.19-rc2
v5.19-rc3
v5.19-rc4
v5.4
v5.4-rc2
v5.4-rc3
v5.4-rc4
v5.4-rc5
v5.4-rc6
v5.4-rc7
v5.4-rc8
v5.5
v5.5-rc1
v5.5-rc2
v5.5-rc3
v5.5-rc4
v5.5-rc5
v5.5-rc6
v5.5-rc7
v5.6
v5.6-rc1
v5.6-rc2
v5.6-rc3
v5.6-rc4
v5.6-rc5
v5.6-rc6
v5.6-rc7
v5.7
v5.7-rc1
v5.7-rc2
v5.7-rc3
v5.7-rc4
v5.7-rc5
v5.7-rc6
v5.7-rc7
v5.8
v5.8-rc1
v5.8-rc2
v5.8-rc3
v5.8-rc4
v5.8-rc5
v5.8-rc6
v5.8-rc7
v5.9
v5.9-rc1
v5.9-rc2
v5.9-rc3
v5.9-rc4
v5.9-rc5
v5.9-rc6
v5.9-rc7
v5.9-rc8
Database specific
vanir_signatures
[
{
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@f4a80ec8c51d68be4b7a7830c510f75080c5e417",
"id": "CVE-2022-49675-2dbb06cd",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "kernel/time/tick-sched.c"
},
"signature_type": "Line",
"digest": {
"threshold": 0.9,
"line_hashes": [
"150219864163078679381287441689422238492",
"284822845530155802915126366857785313996",
"55513947299770652028840932164627298028",
"23042441453790954885808161339870825792"
]
}
},
{
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@c4ff3ffe0138234774602152fe67e3a898c615c6",
"id": "CVE-2022-49675-94e6fab5",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "kernel/time/tick-sched.c"
},
"signature_type": "Line",
"digest": {
"threshold": 0.9,
"line_hashes": [
"150219864163078679381287441689422238492",
"284822845530155802915126366857785313996",
"55513947299770652028840932164627298028",
"23042441453790954885808161339870825792"
]
}
},
{
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@2390095113e98fc52fffe35c5206d30d9efe3f78",
"id": "CVE-2022-49675-d6ea4dcd",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "kernel/time/tick-sched.c"
},
"signature_type": "Line",
"digest": {
"threshold": 0.9,
"line_hashes": [
"150219864163078679381287441689422238492",
"284822845530155802915126366857785313996",
"55513947299770652028840932164627298028",
"23042441453790954885808161339870825792"
]
}
},
{
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@ea32b27e2f8c58c92bff5ecba7fcf64b97707089",
"id": "CVE-2022-49675-d8c98560",
"deprecated": false,
"signature_version": "v1",
"target": {
"file": "kernel/time/tick-sched.c"
},
"signature_type": "Line",
"digest": {
"threshold": 0.9,
"line_hashes": [
"150219864163078679381287441689422238492",
"284822845530155802915126366857785313996",
"55513947299770652028840932164627298028",
"23042441453790954885808161339870825792"
]
}
}
]