CVE-2022-49778

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.1.0-rc3+

Description The issue arises from the incorrect handling of file map count for non-leaf pmd/pud in the Linux kernel, specifically when collapsing hugepages. This triggers an unexpected BUG ON() due to the decrease of file map count for a non-leaf pmd. The problem is solved by using pmd leaf() instead of pmd present() in pmd user accessible page() and pud leaf() for pud user accessible page().

Recommendations For Linux kernel versions prior to 6.1.0-rc3+, update to a version that includes the fix for the incorrect file map count handling. As a temporary workaround, consider disabling the collapse huge page() function until a patch is available. Restrict access to the pmd user accessible page() and pud user accessible page() functions to minimize the risk of exploitation.