CVE-2022-50091

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A vulnerability in the Linux kernel has been resolved. The issue is related to the csdlock debug kernel-boot parameter, which is parsed by the early param() function csdlock debug(). If set, csdlock debug() invokes static branch enable() to enable the csd lock wait feature. However, this triggers a panic on arm64 for kernels built with CONFIG SPARSEMEM=y and CONFIG SPARSEMEM VMEMMAP=n due to a NULL dereference. The problem also affects powerpc because early param() functions are invoked earlier than jump label init(), resulting in static key enable() failures.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.