5.5

CVE-2022-50285

mm,hugetlb: take hugetlb_lock before decrementing h->resv_huge_pages

In the Linux kernel, the following vulnerability has been resolved:

mm,hugetlb: take hugetlb_lock before decrementing h->resv_huge_pages

The h->*_huge_pages counters are protected by the hugetlb_lock, but
alloc_huge_page has a corner case where it can decrement the counter
outside of the lock.

This could lead to a corrupted value of h->resv_huge_pages, which we have
observed on our systems.

Take the hugetlb_lock before decrementing h->resv_huge_pages to avoid a
potential race.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version >= 4.3.6 < 4.4
LinuxLinux Kernel Version >= 4.4.1 < 4.9.332
LinuxLinux Kernel Version >= 4.10 < 4.14.298
LinuxLinux Kernel Version >= 4.15 < 4.19.264
LinuxLinux Kernel Version >= 4.20 < 5.4.223
LinuxLinux Kernel Version >= 5.5 < 5.10.153
LinuxLinux Kernel Version >= 5.11 < 5.15.76
LinuxLinux Kernel Version >= 5.16 < 6.0.6
LinuxLinux Kernel Version4.4 Update-
LinuxLinux Kernel Version4.4 Updaterc5
LinuxLinux Kernel Version4.4 Updaterc6
LinuxLinux Kernel Version4.4 Updaterc7
LinuxLinux Kernel Version4.4 Updaterc8
LinuxLinux Kernel Version6.1 Updaterc1
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.15% 0.043
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Es wurden noch keine Informationen zu CWE veröffentlicht.
https://git.kernel.org/stable/c/3e50a07b6a5fcd39df1534d3fdaca4292a65efe6
Patch
https://git.kernel.org/stable/c/629c986e19fe9481227c7cdfd9a105bbc104d245
Patch
https://git.kernel.org/stable/c/2b35432d324898ec41beb27031d2a1a864a4d40e
Patch
https://git.kernel.org/stable/c/11993652d0b49e27272db0a37aa828d8a3a4b92b
Patch
https://git.kernel.org/stable/c/568e3812b1778b4c0c229649b59977d88f400ece
Patch
https://git.kernel.org/stable/c/112a005d1ded04a4b41b6d01833cc0bda90625cc
Patch
https://git.kernel.org/stable/c/c828fab903725279aa9dc6ae3d44bb7e4778f92c
Patch
https://git.kernel.org/stable/c/12df140f0bdfae5dcfc81800970dd7f6f632e00c
Patch