CVE-2022-48991

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to the version that includes the fix for the issue introduced in commit f3f0e1d2150b and exacerbated in commit 27e1f8273113

Description The issue is related to the Linux kernel's mm/khugepaged component, where code paths that remove page table entries must invoke MMU notifiers to prevent secondary MMUs, like KVM, from accessing pages that are no longer mapped. Failing to notify these MMUs can lead to page use-after-free. The security impact of this issue was introduced in a specific commit and worsened in a subsequent commit that omitted necessary flushes for the removal of present PTEs.

Recommendations For Linux kernel versions prior to the fixed version, consider applying the patch that invokes MMU notifiers in shmem/file collapse paths to prevent page use-after-free. As a temporary workaround, consider restricting access to the mm/khugepaged component until a patch is available. Avoid using the khugepaged function with tmpfs/shmem pages until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.