CVE-2022-48816

MEDIUM

Linux Kernel 5.10.67-5.11 - NULL Pointer Dereference in SUNRPC Sysfs Read

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: SUNRPC: lock against ->sock changing during sysfs read ->sock can be set to NULL asynchronously unless ->recv_mutex is held. So it is important to hold that mutex. Otherwise a sysfs read can trigger an oops. Commit 17f09d3f619a ("SUNRPC: Check if the xprt is connected before handling sysfs reads") appears to attempt to fix this problem, but it only narrows the race window.

References (3)

Core 3

Core References

https://git.kernel.org/stable/c/fdc42287ae3f8a35cc2098307f52d7864b4bc8ed

Patch

https://git.kernel.org/stable/c/9482ab4540f5bcc869b44c067ae99b5fca16bd07

Patch

https://git.kernel.org/stable/c/b49ea673e119f59c71645e2f65b3ccad857c90ee

Scores

CVSS v3 4.7

EPSS 0.0025

EPSS Percentile 16.7%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-476

Status published

Products (14)

Linux/Linux < 5.14

Linux/Linux 21a2be1a5145d072deedc7cdc5b2d17380abea75

Linux/Linux 5.10.67 - 5.11

Linux/Linux 5.13.19 - 5.14

Linux/Linux 5.14

Linux/Linux 5.15.209 - 5.15.*

Linux/Linux 5.16.10 - 5.16.*

Linux/Linux 5.17

Linux/Linux 77876473912d1bf1ed16bffa1674e5ff0f499f25

Linux/Linux a8482488a7d6d320f63a9ee1912dbb5ae5b80a61 - 9482ab4540f5bcc869b44c067ae99b5fca16bd07

... and 4 more

Published Jul 16, 2024

Tracked Since Feb 18, 2026