5.5

CVE-2022-48799

perf: Fix list corruption in perf_cgroup_switch()

In the Linux kernel, the following vulnerability has been resolved:

perf: Fix list corruption in perf_cgroup_switch()

There's list corruption on cgrp_cpuctx_list. This happens on the
following path:

  perf_cgroup_switch: list_for_each_entry(cgrp_cpuctx_list)
      cpu_ctx_sched_in
         ctx_sched_in
            ctx_pinned_sched_in
              merge_sched_in
                  perf_cgroup_event_disable: remove the event from the list

Use list_for_each_entry_safe() to allow removing an entry during
iteration.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version >= 4.11 < 4.14.267
LinuxLinux Kernel Version >= 4.15 < 4.19.230
LinuxLinux Kernel Version >= 4.20 < 5.4.180
LinuxLinux Kernel Version >= 5.5 < 5.10.101
LinuxLinux Kernel Version >= 5.11 < 5.15.24
LinuxLinux Kernel Version >= 5.16 < 5.16.10
LinuxLinux Kernel Version5.17 Updaterc1
LinuxLinux Kernel Version5.17 Updaterc2
LinuxLinux Kernel Version5.17 Updaterc3
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.24% 0.148
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Es wurden noch keine Informationen zu CWE veröffentlicht.
https://git.kernel.org/stable/c/2142bc1469a316fddd10012d76428f7265258f81
Patch
https://git.kernel.org/stable/c/30d9f3cbe47e1018ddc8069ac5b5c9e66fbdf727
Patch
https://git.kernel.org/stable/c/5d76ed4223403f90421782adb2f20a9ecbc93186
Patch
https://git.kernel.org/stable/c/5f4e5ce638e6a490b976ade4a40017b40abb2da0
Patch
https://git.kernel.org/stable/c/7969fe91c9830e045901970e9d755b7505881d4a
Patch
https://git.kernel.org/stable/c/a2ed7b29d0673ba361546e2d87dbbed149456c45
Patch
https://git.kernel.org/stable/c/f6b5d51976fcefef5732da3e3feb3ccff680f7c8
Patch