In the Linux kernel, the following vulnerability has been resolved:
s390/dasd: fix Oops in dasdaliasgetstartdev due to missing pavgroup
Fix Oops in dasdaliasgetstartdev() function caused by the pavgroup pointer being NULL.
The pavgroup pointer is checked on the entrance of the function but without the lcu->lock being held. Therefore there is a race window between dasdaliasgetstartdev() and lcuupdate() which sets pavgroup to NULL with the lcu->lock held.
Fix by checking the pavgroup pointer with lcu->lock held.
[
{
"signature_type": "Function",
"id": "CVE-2022-48636-1336d87e",
"signature_version": "v1",
"digest": {
"length": 1122.0,
"function_hash": "311941605752002479966044666461478342896"
},
"target": {
"function": "dasd_alias_get_start_dev",
"file": "drivers/s390/block/dasd_alias.c"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@d86b4267834e6d4af62e3073e48166e349ab1b70"
},
{
"signature_type": "Function",
"id": "CVE-2022-48636-135c048c",
"signature_version": "v1",
"digest": {
"length": 1122.0,
"function_hash": "311941605752002479966044666461478342896"
},
"target": {
"function": "dasd_alias_get_start_dev",
"file": "drivers/s390/block/dasd_alias.c"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@db7ba07108a48c0f95b74fabbfd5d63e924f992d"
},
{
"signature_type": "Line",
"id": "CVE-2022-48636-1e6360a5",
"signature_version": "v1",
"digest": {
"threshold": 0.9,
"line_hashes": [
"129478876807570731041696598529518072040",
"311181211906374738710504173937549510186",
"95463869136561436786372775683238967206",
"82605221407535336903346152626168800546",
"78653944393081288649173341329351393026",
"149672040321304871050513229359003534914",
"163679414118485588259365314949535467305",
"101549598213039314834690629698535037630",
"79219269744645557814749817968622317268",
"333309450368759390741273810188086170475",
"336316155507722937201278455275463295918",
"34277188252920721021763967321663700817"
]
},
"target": {
"file": "drivers/s390/block/dasd_alias.c"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@f5fcc9d6d71d9ff7fdbdd4b89074e6e24fffc20b"
},
{
"signature_type": "Function",
"id": "CVE-2022-48636-27910cc3",
"signature_version": "v1",
"digest": {
"length": 1122.0,
"function_hash": "311941605752002479966044666461478342896"
},
"target": {
"function": "dasd_alias_get_start_dev",
"file": "drivers/s390/block/dasd_alias.c"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@f5fcc9d6d71d9ff7fdbdd4b89074e6e24fffc20b"
},
{
"signature_type": "Line",
"id": "CVE-2022-48636-509e7ca4",
"signature_version": "v1",
"digest": {
"threshold": 0.9,
"line_hashes": [
"129478876807570731041696598529518072040",
"311181211906374738710504173937549510186",
"95463869136561436786372775683238967206",
"82605221407535336903346152626168800546",
"78653944393081288649173341329351393026",
"149672040321304871050513229359003534914",
"163679414118485588259365314949535467305",
"101549598213039314834690629698535037630",
"79219269744645557814749817968622317268",
"333309450368759390741273810188086170475",
"336316155507722937201278455275463295918",
"34277188252920721021763967321663700817"
]
},
"target": {
"file": "drivers/s390/block/dasd_alias.c"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@49f401a98b318761ca2e15d4c7869a20043fbed4"
},
{
"signature_type": "Line",
"id": "CVE-2022-48636-6b10afe1",
"signature_version": "v1",
"digest": {
"threshold": 0.9,
"line_hashes": [
"129478876807570731041696598529518072040",
"311181211906374738710504173937549510186",
"95463869136561436786372775683238967206",
"82605221407535336903346152626168800546",
"78653944393081288649173341329351393026",
"149672040321304871050513229359003534914",
"163679414118485588259365314949535467305",
"101549598213039314834690629698535037630",
"79219269744645557814749817968622317268",
"333309450368759390741273810188086170475",
"336316155507722937201278455275463295918",
"34277188252920721021763967321663700817"
]
},
"target": {
"file": "drivers/s390/block/dasd_alias.c"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@2e473351400e3dd66f0b71eddcef82ee45a584c1"
},
{
"signature_type": "Function",
"id": "CVE-2022-48636-a139071a",
"signature_version": "v1",
"digest": {
"length": 1122.0,
"function_hash": "311941605752002479966044666461478342896"
},
"target": {
"function": "dasd_alias_get_start_dev",
"file": "drivers/s390/block/dasd_alias.c"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@d3a67c21b18f33c79382084af556557c442f12a6"
},
{
"signature_type": "Line",
"id": "CVE-2022-48636-b562dfc7",
"signature_version": "v1",
"digest": {
"threshold": 0.9,
"line_hashes": [
"129478876807570731041696598529518072040",
"311181211906374738710504173937549510186",
"95463869136561436786372775683238967206",
"82605221407535336903346152626168800546",
"78653944393081288649173341329351393026",
"149672040321304871050513229359003534914",
"163679414118485588259365314949535467305",
"101549598213039314834690629698535037630",
"79219269744645557814749817968622317268",
"333309450368759390741273810188086170475",
"336316155507722937201278455275463295918",
"34277188252920721021763967321663700817"
]
},
"target": {
"file": "drivers/s390/block/dasd_alias.c"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@650a2e79d176db753654d3dde88e53a2033036ac"
},
{
"signature_type": "Function",
"id": "CVE-2022-48636-c7434840",
"signature_version": "v1",
"digest": {
"length": 1122.0,
"function_hash": "311941605752002479966044666461478342896"
},
"target": {
"function": "dasd_alias_get_start_dev",
"file": "drivers/s390/block/dasd_alias.c"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@650a2e79d176db753654d3dde88e53a2033036ac"
},
{
"signature_type": "Line",
"id": "CVE-2022-48636-c81c42b2",
"signature_version": "v1",
"digest": {
"threshold": 0.9,
"line_hashes": [
"129478876807570731041696598529518072040",
"311181211906374738710504173937549510186",
"95463869136561436786372775683238967206",
"82605221407535336903346152626168800546",
"78653944393081288649173341329351393026",
"149672040321304871050513229359003534914",
"163679414118485588259365314949535467305",
"101549598213039314834690629698535037630",
"79219269744645557814749817968622317268",
"333309450368759390741273810188086170475",
"336316155507722937201278455275463295918",
"34277188252920721021763967321663700817"
]
},
"target": {
"file": "drivers/s390/block/dasd_alias.c"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@db7ba07108a48c0f95b74fabbfd5d63e924f992d"
},
{
"signature_type": "Line",
"id": "CVE-2022-48636-d0dfda5f",
"signature_version": "v1",
"digest": {
"threshold": 0.9,
"line_hashes": [
"129478876807570731041696598529518072040",
"311181211906374738710504173937549510186",
"95463869136561436786372775683238967206",
"82605221407535336903346152626168800546",
"78653944393081288649173341329351393026",
"149672040321304871050513229359003534914",
"163679414118485588259365314949535467305",
"101549598213039314834690629698535037630",
"79219269744645557814749817968622317268",
"333309450368759390741273810188086170475",
"336316155507722937201278455275463295918",
"34277188252920721021763967321663700817"
]
},
"target": {
"file": "drivers/s390/block/dasd_alias.c"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@d3a67c21b18f33c79382084af556557c442f12a6"
},
{
"signature_type": "Function",
"id": "CVE-2022-48636-e1c999ca",
"signature_version": "v1",
"digest": {
"length": 1122.0,
"function_hash": "311941605752002479966044666461478342896"
},
"target": {
"function": "dasd_alias_get_start_dev",
"file": "drivers/s390/block/dasd_alias.c"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@2e473351400e3dd66f0b71eddcef82ee45a584c1"
},
{
"signature_type": "Line",
"id": "CVE-2022-48636-e1ef4dd0",
"signature_version": "v1",
"digest": {
"threshold": 0.9,
"line_hashes": [
"129478876807570731041696598529518072040",
"311181211906374738710504173937549510186",
"95463869136561436786372775683238967206",
"82605221407535336903346152626168800546",
"78653944393081288649173341329351393026",
"149672040321304871050513229359003534914",
"163679414118485588259365314949535467305",
"101549598213039314834690629698535037630",
"79219269744645557814749817968622317268",
"333309450368759390741273810188086170475",
"336316155507722937201278455275463295918",
"34277188252920721021763967321663700817"
]
},
"target": {
"file": "drivers/s390/block/dasd_alias.c"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@aaba5ff2742043705bc4c02fd0b2b246e2e16da1"
},
{
"signature_type": "Function",
"id": "CVE-2022-48636-f68d2806",
"signature_version": "v1",
"digest": {
"length": 1122.0,
"function_hash": "311941605752002479966044666461478342896"
},
"target": {
"function": "dasd_alias_get_start_dev",
"file": "drivers/s390/block/dasd_alias.c"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@49f401a98b318761ca2e15d4c7869a20043fbed4"
},
{
"signature_type": "Function",
"id": "CVE-2022-48636-f9b7458b",
"signature_version": "v1",
"digest": {
"length": 1122.0,
"function_hash": "311941605752002479966044666461478342896"
},
"target": {
"function": "dasd_alias_get_start_dev",
"file": "drivers/s390/block/dasd_alias.c"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@aaba5ff2742043705bc4c02fd0b2b246e2e16da1"
},
{
"signature_type": "Line",
"id": "CVE-2022-48636-ff92c882",
"signature_version": "v1",
"digest": {
"threshold": 0.9,
"line_hashes": [
"129478876807570731041696598529518072040",
"311181211906374738710504173937549510186",
"95463869136561436786372775683238967206",
"82605221407535336903346152626168800546",
"78653944393081288649173341329351393026",
"149672040321304871050513229359003534914",
"163679414118485588259365314949535467305",
"101549598213039314834690629698535037630",
"79219269744645557814749817968622317268",
"333309450368759390741273810188086170475",
"336316155507722937201278455275463295918",
"34277188252920721021763967321663700817"
]
},
"target": {
"file": "drivers/s390/block/dasd_alias.c"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@d86b4267834e6d4af62e3073e48166e349ab1b70"
}
]