Linux · Linux Kernel · CVE-2022-48745
Name of the Vulnerable Software and Affected Versions:
Linux kernel (affected versions not specified)
Description:
The issue is related to a race condition in the net/mlx5 component of the Linux kernel, which can occur when the `del timer()` function is called and a timer is deactivated while another process is handling the timer interrupt. This situation can lead to a call trace, including functions like `run timer softirq()`, `recalibrate cpu khz()`, and `sysvec apic timer interrupt()`. The vulnerability can be exploited to potentially elevate privileges in the system.
Recommendations:
At the moment, there is no information about a newer version that contains a fix for this vulnerability.