CVE-2022-50362

Name of the Vulnerable Software and Affected Versions Linux kernel versions 5.17.0-rc4+ through 5.17.0-rc4+

Description The Linux kernel contains a flaw in the dmaengine hisilicon component related to multi-thread support for a DMA channel. Specifically, a data race condition can occur when multiple threads attempt to use a DMA channel concurrently, leading to system hangs and kernel panics. This issue arises because threads rewrite channel descriptors while the device is issuing pending requests, causing inconsistencies in descriptor handling and ultimately resulting in timeouts. The fix involves restricting direct access to DMA channel descriptors and ensuring that descriptors are only modified after they have been used.

Recommendations Update to a newer version of the Linux kernel that contains a fix for this vulnerability.