CVE-2022-49905
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2022-49905
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-49905.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2022-49905
- Downstream
- Related
- Published
- 2025-05-01T14:10:49Z
- Modified
- 2025-10-21T11:32:25.896678Z
- Summary
- net/smc: Fix possible leaked pernet namespace in smc_init()
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
net/smc: Fix possible leaked pernet namespace in smc_init()
In smcinit(), registerpernetsubsys(&smcnetstatops) is called without any error handling. If it fails, registering of &smcnetops won't be reverted. And if smcnlinit() fails, &smcnetstat_ops itself won't be reverted.
This leaves wild ops in subsystem linkedlist and when another module tries to call registerpernetoperations() it triggers page fault:
BUG: unable to handle page fault for address: fffffbfff81b964c RIP: 0010:registerpernetoperations+0x1b9/0x5f0 Call Trace: <TASK> registerpernetsubsys+0x29/0x40 ebtables_init+0x58/0x1000 [ebtables] ...
- References
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced194730a9beb52d2b030ea45e12d94868d4a0e6fdFixed61defd6450a9ef4a1487090449999b0fd83518ef
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced194730a9beb52d2b030ea45e12d94868d4a0e6fdFixedc97daf836f7caf81d3144b8cd2b2a51f9bc3bd09
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced194730a9beb52d2b030ea45e12d94868d4a0e6fdFixed62ff373da2534534c55debe6c724c7fe14adb97f
Affected versions
v5.*
v5.13
v5.13-rc4
v5.13-rc5
v5.13-rc6
v5.13-rc7
v5.14
v5.14-rc1
v5.14-rc2
v5.14-rc3
v5.14-rc4
v5.14-rc5
v5.14-rc6
v5.14-rc7
v5.15
v5.15-rc1
v5.15-rc2
v5.15-rc3
v5.15-rc4
v5.15-rc5
v5.15-rc6
v5.15-rc7
v5.15.1
v5.15.10
v5.15.11
v5.15.12
v5.15.13
v5.15.14
v5.15.15
v5.15.16
v5.15.17
v5.15.18
v5.15.19
v5.15.2
v5.15.20
v5.15.21
v5.15.22
v5.15.23
v5.15.24
v5.15.25
v5.15.26
v5.15.27
v5.15.28
v5.15.29
v5.15.3
v5.15.30
v5.15.31
v5.15.32
v5.15.33
v5.15.34
v5.15.35
v5.15.36
v5.15.37
v5.15.38
v5.15.39
v5.15.4
v5.15.40
v5.15.41
v5.15.42
v5.15.43
v5.15.44
v5.15.45
v5.15.46
v5.15.47
v5.15.48
v5.15.49
v5.15.5
v5.15.50
v5.15.51
v5.15.52
v5.15.53
v5.15.54
v5.15.55
v5.15.56
v5.15.57
v5.15.58
v5.15.59
v5.15.6
v5.15.60
v5.15.61
v5.15.62
v5.15.63
v5.15.64
v5.15.65
v5.15.66
v5.15.67
v5.15.68
v5.15.69
v5.15.7
v5.15.70
v5.15.71
v5.15.72
v5.15.73
v5.15.74
v5.15.75
v5.15.76
v5.15.77
v5.15.8
v5.15.9
v5.16
v5.16-rc1
v5.16-rc2
v5.16-rc3
v5.16-rc4
v5.16-rc5
v5.16-rc6
v5.16-rc7
v5.16-rc8
v5.17
v5.17-rc1
v5.17-rc2
v5.17-rc3
v5.17-rc4
v5.17-rc5
v5.17-rc6
v5.17-rc7
v5.17-rc8
v5.18
v5.18-rc1
v5.18-rc2
v5.18-rc3
v5.18-rc4
v5.18-rc5
v5.18-rc6
v5.18-rc7
v5.19
v5.19-rc1
v5.19-rc2
v5.19-rc3
v5.19-rc4
v5.19-rc5
v5.19-rc6
v5.19-rc7
v5.19-rc8
v6.*
v6.0
v6.0-rc1
v6.0-rc2
v6.0-rc3
v6.0-rc4
v6.0-rc5
v6.0-rc6
v6.0-rc7
v6.0.1
v6.0.2
v6.0.3
v6.0.4
v6.0.5
v6.0.6
v6.0.7
v6.1-rc1
v6.1-rc2
Database specific
vanir_signatures
[
{
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@62ff373da2534534c55debe6c724c7fe14adb97f",
"target": {
"file": "net/smc/af_smc.c"
},
"deprecated": false,
"id": "CVE-2022-49905-1aee9315",
"signature_version": "v1",
"digest": {
"threshold": 0.9,
"line_hashes": [
"129223025769782336853657977261032791868",
"138714849107663916731351984839038851754",
"136922548706705751845054786430228952868",
"194813047646135993919000122281700450164",
"246677937347960490984557094119940857795",
"213378583678425321441292608481534829912",
"193188591919883075205489531869669619589",
"222621545469746735636311384187289404113",
"170550862088691802913931719166303910275",
"209885501315220854320621224171378637777",
"232495805371079695890656972602176944465",
"18215128056591399512241245587023633244",
"330228063884271330640844962420379337866"
]
},
"signature_type": "Line"
},
{
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@61defd6450a9ef4a1487090449999b0fd83518ef",
"target": {
"file": "net/smc/af_smc.c"
},
"deprecated": false,
"id": "CVE-2022-49905-358deeff",
"signature_version": "v1",
"digest": {
"threshold": 0.9,
"line_hashes": [
"129223025769782336853657977261032791868",
"138714849107663916731351984839038851754",
"136922548706705751845054786430228952868",
"194813047646135993919000122281700450164",
"246677937347960490984557094119940857795",
"213378583678425321441292608481534829912",
"193188591919883075205489531869669619589",
"222621545469746735636311384187289404113",
"170550862088691802913931719166303910275",
"209885501315220854320621224171378637777",
"232495805371079695890656972602176944465",
"18215128056591399512241245587023633244",
"330228063884271330640844962420379337866"
]
},
"signature_type": "Line"
},
{
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@61defd6450a9ef4a1487090449999b0fd83518ef",
"target": {
"function": "smc_init",
"file": "net/smc/af_smc.c"
},
"deprecated": false,
"id": "CVE-2022-49905-6a005e93",
"signature_version": "v1",
"digest": {
"length": 1864.0,
"function_hash": "161468132046050096700620068896549079490"
},
"signature_type": "Function"
},
{
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@c97daf836f7caf81d3144b8cd2b2a51f9bc3bd09",
"target": {
"file": "net/smc/af_smc.c"
},
"deprecated": false,
"id": "CVE-2022-49905-ac1b9d6d",
"signature_version": "v1",
"digest": {
"threshold": 0.9,
"line_hashes": [
"129223025769782336853657977261032791868",
"138714849107663916731351984839038851754",
"136922548706705751845054786430228952868",
"194813047646135993919000122281700450164",
"246677937347960490984557094119940857795",
"213378583678425321441292608481534829912",
"193188591919883075205489531869669619589",
"222621545469746735636311384187289404113",
"170550862088691802913931719166303910275",
"209885501315220854320621224171378637777",
"232495805371079695890656972602176944465",
"18215128056591399512241245587023633244",
"330228063884271330640844962420379337866"
]
},
"signature_type": "Line"
},
{
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@62ff373da2534534c55debe6c724c7fe14adb97f",
"target": {
"function": "smc_init",
"file": "net/smc/af_smc.c"
},
"deprecated": false,
"id": "CVE-2022-49905-c1469e8b",
"signature_version": "v1",
"digest": {
"length": 2179.0,
"function_hash": "152770776491197336990744154150440565531"
},
"signature_type": "Function"
},
{
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@c97daf836f7caf81d3144b8cd2b2a51f9bc3bd09",
"target": {
"function": "smc_init",
"file": "net/smc/af_smc.c"
},
"deprecated": false,
"id": "CVE-2022-49905-e712dddd",
"signature_version": "v1",
"digest": {
"length": 2179.0,
"function_hash": "152770776491197336990744154150440565531"
},
"signature_type": "Function"
}
]