CVE-2022-49983

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.17.0-rc2-syzkaller-00316-g0457e5153e0e

Description A vulnerability in the Linux kernel has been resolved, related to the udmabuf device. If the DMA mask is not set explicitly, a warning occurs when userspace tries to access the dma-buf via the CPU. The issue is reported by syzbot and is associated with the dma map sg attrs function in kernel/dma/mapping.c. The vulnerability may be exploited through the dma buf begin cpu access function in drivers/dma-buf/dma-buf.c and the dma buf ioctl function in the same file, which can be accessed through the /dev API endpoint, specifically the ioctl call. The dma buf udmabuf device is involved, and the dma mask variable is a key factor in the vulnerability.

Recommendations For Linux kernel versions prior to 5.17.0-rc2-syzkaller-00316-g0457e5153e0e, set the DMA mask for the udmabuf device explicitly to prevent the warning and potential exploitation. As a temporary workaround, consider disabling the dma buf begin cpu access function until a patch is available. Restrict access to the udmabuf device to minimize the risk of exploitation. Avoid using the dma mask variable in the affected API endpoint until the issue is resolved.