CVE-2022-49236

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A use-after-free issue exists in the Linux kernel due to a race condition between the btf try get module and load module functions. This occurs when the module BTF is published to userspace before the module initcall is invoked, allowing btf try get module to succeed even if the module has not been fully initialized. If the module loading fails and the module is freed, a subsequent call to module put for the freed module can result in a use-after-free issue. The estimated number of potentially affected devices worldwide is not available. There is no information about real-world incidents where this issue was exploited.

Recommendations To resolve this issue, apply the patch that sets a flag BTF MODULE F LIVE from the notifier callback when the MODULE STATE LIVE state is reached for the module, preventing btf try get module from returning a module that is not fully formed. As a temporary workaround, consider restricting access to the vulnerable module until the patch is applied. At the moment, there is no information about a newer version that contains a fix for this vulnerability.