CVE-2022-49970

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to the fixed version

Description A kernel BUG has been resolved in the Linux kernel, specifically in the bpf and cgroup components. The issue was reported by Syzkaller and occurs when a kernel BUG is triggered due to an invalid opcode. The problem arises when a cgroup has an attached program and the purge effective progs function is called, causing the iteration to skip subsequent operations and resulting in a NULL cgroup. This issue can be triggered by attaching a program to a cgroup, writing to /proc/thread-self/fail-nth, and then detaching the program.

Recommendations To resolve this issue, update to a version of the Linux kernel that includes the fix for the kernel BUG in purge effective progs. As a temporary workaround, consider avoiding the use of the purge effective progs function or restricting access to the affected cgroup components until a patch is available.