In the Linux kernel, the following vulnerability has been resolved:
SUNRPC: lock against ->sock changing during sysfs read
->sock can be set to NULL asynchronously unless ->recv_mutex is held.
So it is important to hold that mutex. Otherwise a sysfs read can
trigger an oops.
Commit 17f09d3f619a ("SUNRPC: Check if the xprt is connected before
handling sysfs reads") appears to attempt to fix this problem, but it
only narrows the race window.
Metrics
Affected Vendors & Products
References
History
Thu, 12 Sep 2024 08:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Wed, 11 Sep 2024 13:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
MITRE
Status: PUBLISHED
Assigner: Linux
Published: 2024-07-16T11:44:04.654Z
Updated: 2024-09-11T17:33:00.382Z
Reserved: 2024-07-16T11:38:08.900Z
Link: CVE-2022-48816
Vulnrichment
Updated: 2024-08-03T15:25:01.591Z
NVD
Status : Awaiting Analysis
Published: 2024-07-16T12:15:05.687
Modified: 2024-07-16T13:43:58.773
Link: CVE-2022-48816
Redhat