CVE-2022-49709
- Source
- https://cve.org/CVERecord?id=CVE-2022-49709
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-49709.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2022-49709
- Downstream
- Published
- 2025-02-26T02:24:26.817Z
- Modified
- 2026-04-02T08:27:51.261175Z
- Summary
- cfi: Fix __cfi_slowpath_diag RCU usage with cpuidle
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
cfi: Fix __cfislowpathdiag RCU usage with cpuidle
RCU_NONIDLE usage during __cfislowpathdiag can result in an invalid RCU state in the cpuidle code path:
WARNING: CPU: 1 PID: 0 at kernel/rcu/tree.c:613 rcueqsenter+0xe4/0x138 ... Call trace: rcueqsenter+0xe4/0x138 rcuidleenter+0xa8/0x100 cpuidleenterstate+0x154/0x3a8 cpuidleenter+0x3c/0x58 doidle.llvm.6590768638138871020+0x1f4/0x2ec cpustartupentry+0x28/0x2c secondarystartkernel+0x1b8/0x220 _secondaryswitched+0x94/0x98
Instead, call rcuirqenter/exit to wake up RCU only when needed and disable interrupts for the entire CFI shadow/module check when we do.
- Database specific
{ "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/49xxx/CVE-2022-49709.json", "cna_assigner": "Linux" }- References
-
- https://git.kernel.org/stable/c/57cd6d157eb479f0a8e820fd36b7240845c8a937
- https://git.kernel.org/stable/c/75f3a5fa2ad049c85ab5d5ee1ed9cfaa7e62c5ed
- https://git.kernel.org/stable/c/ca3897f2ac02ceae5e6fa794f83c36f9885b93da
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/49xxx/CVE-2022-49709.json
- https://nvd.nist.gov/vuln/detail/CVE-2022-49709
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git