CVE-2022-50084

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.18.0

Description A bug in the Linux kernel has been resolved, which was causing an address sanitizer warning in raid status. The warning occurred when using a kernel with the address sanitizer and running a specific testsuite. The issue was caused by reading conf->max nr stripes in raid status, which reads mddev->private and casts it to struct r5conf. However, if the raid type is not 4, 5, or 6, mddev->private may point to a different struct, resulting in invalid memory reads and a KASAN warning.

Recommendations For Linux kernel versions prior to 5.18.0, the issue can be resolved by updating to a newer version of the kernel that includes the fix for the address sanitizer warning in raid status. As a temporary workaround, consider disabling the raid status function until a patch is available. Restrict access to the dm raid module to minimize the risk of exploitation. Avoid using the mddev->private pointer in the affected code until the issue is resolved.