PT-2025-18505 · Linux+6 · Linux Kernel+6
Published
2022-11-09
·
Updated
2025-08-05
·
CVE-2022-49788
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Linux kernel (affected versions not specified)
Description
A vulnerability has been resolved in the Linux kernel, specifically in the
vmci host do receive datagram() function. The issue is related to an information leak, where the struct vmci event qp allocated by qp notify peer() contains padding that may carry uninitialized data to userspace. This was observed by KMSAN, which reported a kernel-infoleak in instrument copy to user(). The vulnerability may allow unauthorized access to sensitive information.Recommendations
To resolve the issue, use
memset() to prevent information leaks. Additionally, it is recommended to speculatively fix qp notify peer local(), which may suffer from the same problem. As a temporary workaround, consider restricting access to the vulnerable vmci host do receive datagram() function until a patch is available.Exploit
Fix
Use of Uninitialized Resource
Access of Uninitialized Pointer
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Almalinux
Astra Linux
Centos
Linux Kernel
Red Hat
Rocky Linux
Suse