CVE-2022-49101

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to the version containing the fix for this issue

Description A vulnerability in the Linux kernel has been identified, specifically in the Xen HVM guest. The issue arises when the xen hvm init time ops() function is called too early, before the vcpu info for the boot vcpu is registered, leading to a panic when accessing & this cpu read(xen vcpu)->time. This occurs when the boot vcpu is 32 or greater. The problem can be reproduced using the command taskset -c 33 echo c > /proc/sysrq-trigger when kdump/kexec is enabled.

Recommendations As a temporary workaround, consider delaying the xen hvm init time ops() function call until after the vcpu info for the boot vcpu is registered. To resolve the issue, apply the patch that calls xen hvm init time ops() again later in xen hvm smp prepare boot cpu() after the vcpu info for the boot vcpu is registered.