CVE-2022-48983

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.1.0-rc7-00103-gef4d3ea40565

Description The issue is related to a null pointer dereference bug in the io tctx exit cb() function. This bug can cause a kernel panic when the task exits to userspace. The problem arises because the addition of task work from io ring exit work() is not synchronized with the cancellation of all work items from exec. As a result, if io tctx exit cb() is queued while canceling all work items off exec and gets executed when the task exits to userspace, it can lead to a crash. The estimated number of potentially affected devices is not provided.

Recommendations To resolve the issue, update the Linux kernel to a version that includes the fix for the null pointer dereference bug in the io tctx exit cb() function. As a temporary workaround, consider disabling the io uring component until a patch is available.