CVE-2022-49157

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A vulnerability in the Linux kernel has been resolved, specifically in the qla2xxx driver. The issue occurs after a recoverable PCI error has been detected and recovered, where the driver needs to check if the error condition still persists and/or wait for the OS to give the resume signal. The vulnerability is related to premature hardware access after a PCI error. Technical details include a warning message from the kernel, indicating a CPU warning at qla tmpl.c:440, and a call trace showing the sequence of functions leading to the issue, including qla27xx fwdt entry t266+0x55/0x60, qla27xx walk template+0xb1/0x1b0, and qla27xx execute fwdt template+0x12a/0x160.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.