Linux · Linux Kernel · CVE-2022-48770
Name of the Vulnerable Software and Affected Versions:
Linux kernel (affected versions not specified)
Description:
The issue is related to errors in resource management in the Linux kernel's bpf component. Exploitation of this issue can lead to a denial of service. The problem arises when `task pt regs()` returns NULL on powerpc for kernel threads, which is then used in ` bpf get stack()` to check for user mode, resulting in a kernel oops. The fix involves checking the return value of `task pt regs()` before trying to obtain the call chain.
Recommendations:
At the moment, there is no information about a newer version that contains a fix for this vulnerability.