CVE-2022-48658

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The issue is related to the flush all cpu locked() function in the Linux kernel's memory management subsystem. When this function is called from a task context, it may cause a dependency issue if a workqueue with the WQ MEM RECLAIM bit set ends up flushing the global workqueue. This can lead to problems with memory management and potentially affect the confidentiality, integrity, and availability of protected information. The vulnerability can be exploited by creating a workqueue for the flush operation without the WQ MEM RECLAIM bit set.

Recommendations To resolve this issue, create a workqueue for the flush operation with the WQ MEM RECLAIM bit set. This will help avoid the dependency issue and ensure proper memory management. At the moment, there is no information about a newer version that contains a fix for this vulnerability.