CVE-2022-50675

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The Linux kernel contains a flaw related to Memory Tagging Extension (MTE). Specifically, the issue involves incorrectly setting the PG mte tagged bit for pages that were not properly cleared or restored, potentially leading to false positives with KASAN (Kernel Address Sanitizer) and incorrect memory tagging. This occurred because mte sync tags() was only called for tagged entries, and a subsequent page copy could copy tags to destination pages even if owned by KASAN. The problem was initially masked by a page tag reset function but resurfaced after its reversion.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.