CVE-2022-49760

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A vulnerability has been resolved in the Linux kernel related to the handling of PTE markers in the hugetlb change protection() function. The issue can be triggered by mapping a memfd backed by huge pages, registering uffd-wp, and then uffd-wp'ing an unmapped page or uffd-unprotecting it. This can lead to a VM BUG ON and a kernel BUG. The vulnerability can be exploited by playing with virtio-mem and background snapshots using uffd-wp on hugetlb in QEMU.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.