CVE-2022-48895

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.1.0-rc5-00088-gf3600ff8e322 #1930

Description The vulnerability is related to the iommu/arm-smmu component in the Linux kernel. It occurs when the system is shut down with the "reboot -f" command while a packet transmission is in flight, causing a kernel NULL pointer dereference. This can lead to a kernel panic and a fatal exception in interrupt. The issue is reproducible when the board has a fixed IP address and is ping flooded from another host.

Recommendations To resolve the issue, update the Linux kernel to a version that includes the fix for the iommu/arm-smmu vulnerability. Alternatively, boot with the "arm-smmu.disable bypass=0" option to allow unknown Stream IDs, but this may have security implications.