PT-2022-4973 · Linux+8 · Linux Kernel+8

Jann Horn

·

Published

2022-07-06

·

Updated

2023-08-14

·

CVE-2022-39188

CVSS v2.0

6.8

Medium

VectorAV:N/AC:L/Au:S/C:N/I:N/A:C
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.19
Description The issue is related to a race condition in the Linux kernel, specifically in the unmap mapping range function, which can lead to a situation where a device driver frees a page while it still has stale TLB entries. This occurs in situations with VM PFNMAP VMAs, potentially allowing an attacker to cause a denial of service.
Recommendations For Linux kernel versions prior to 5.19, update to version 5.19 or later to resolve the issue. As a temporary workaround, consider restricting access to the unmap mapping range function to minimize the risk of exploitation.

Fix

Race Condition

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-362

Related Identifiers

ALSA-2023:2148
ALSA-2023:2458
ALSA-2023:2736
ALSA-2023:2951
ALT-PU-2022-2497
ALT-PU-2022-2523
ALT-PU-2022-2915
ALT-PU-2022-2919
ALT-PU-2022-2957
ALT-PU-2023-1684
ALT-PU-2023-1741
ALT-PU-2023-1814
ALT-PU-2023-4894
AZL-10858
BDU:2022-06169
CESA-2023_2736
CESA-2023_2951
CVE-2022-39188
DLA-3131-1
DLA-3173-1
DSA-5257-1
DSA-5257-2
OESA-2022-1925
OESA-2022-1926
OESA-2022-1968
OPENSUSE-SU-2022_3264-1
OPENSUSE-SU-2022_3288-1
OPENSUSE-SU-2022_3293-1
OPENSUSE-SU-2022_3408-1
OPENSUSE-SU-2022_3609-1
OPENSUSE-SU-2022_4617-1
RHSA-2023:2148
RHSA-2023:2458
RHSA-2023:2736
RHSA-2023:2951
RHSA-2023:3388
RHSA-2023:4801
RHSA-2023:4814
RHSA-2023_2148
RHSA-2023_2458
RHSA-2023_2736
RHSA-2023_2951
SUSE-SU-2022:3263-1
SUSE-SU-2022:3264-1
SUSE-SU-2022:3288-1
SUSE-SU-2022:3291-1
SUSE-SU-2022:3293-1
SUSE-SU-2022:3294-1
SUSE-SU-2022:3342-1
SUSE-SU-2022:3346-1
SUSE-SU-2022:3350-1
SUSE-SU-2022:3359-1
SUSE-SU-2022:3360-1
SUSE-SU-2022:3362-1
SUSE-SU-2022:3366-1
SUSE-SU-2022:3368-1
SUSE-SU-2022:3369-1
SUSE-SU-2022:3370-1
SUSE-SU-2022:3372-1
SUSE-SU-2022:3373-1
SUSE-SU-2022:3377-1
SUSE-SU-2022:3379-1
SUSE-SU-2022:3406-1
SUSE-SU-2022:3407-1
SUSE-SU-2022:3408-1
SUSE-SU-2022:3409-1
SUSE-SU-2022:3412-1
SUSE-SU-2022:3415-1
SUSE-SU-2022:3422-1
SUSE-SU-2022:3424-1
SUSE-SU-2022:3432-1
SUSE-SU-2022:3433-1
SUSE-SU-2022:3445-1
SUSE-SU-2022:3450-1
SUSE-SU-2022:3463-1
SUSE-SU-2022:3464-1
SUSE-SU-2022:3465-1
SUSE-SU-2022:3476-1
SUSE-SU-2022:3584-1
SUSE-SU-2022:3586-1
SUSE-SU-2022:3587-1
SUSE-SU-2022:3609-1
SUSE-SU-2022:3809-1
SUSE-SU-2022:4617-1
SUSE-SU-2022_3362-1
SUSE-SU-2022_3406-1
SUSE-SU-2023:0416-1
USN-5790-1
USN-5791-1
USN-5791-2
USN-5791-3
USN-5792-1
USN-5792-2
USN-5815-1
USN-5877-1
USN-6001-1
USN-6013-1
USN-6014-1

Affected Products

Alt Linux
Almalinux
Astra Linux
Centos
Linuxmint
Linux Kernel
Red Hat
Suse
Ubuntu