CVE-2022-49623

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to the version that includes the fix for the slab-out-of-bounds bug in the powerpc/xive/spapr module.

Description A bug in the Linux kernel's powerpc/xive/spapr module causes a slab-out-of-bounds error due to incorrect bitmap allocation size. The issue arises when the allocation uses the wrong unit (bits) instead of the correct unit (BYTES TO LONGS(count) * sizeof(long)). This results in invalid accesses, particularly with small numbers of bits, where the allocated object can be smaller than sizeof(long). The error is detected by the kernel's AddressSanitizer (KASAN) and is triggered in the find first zero bit function.

Recommendations To resolve this issue, update the Linux kernel to a version that includes the fix for the slab-out-of-bounds bug in the powerpc/xive/spapr module. Specifically, the fix involves using bitmap zalloc() to allocate and initialize the irq bitmap, paired with bitmap free() for consistency.

Note: The exact version of the Linux kernel that includes this fix is not specified in the provided information.