CVE-2022-48715
- Source
- https://cve.org/CVERecord?id=CVE-2022-48715
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-48715.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2022-48715
- Downstream
- Related
- Published
- 2024-06-20T11:13:08.654Z
- Modified
- 2026-05-28T03:52:58.029690050Z
- Summary
- scsi: bnx2fc: Make bnx2fc_recv_frame() mp safe
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
scsi: bnx2fc: Make bnx2fcrecvframe() mp safe
Running tests with a debug kernel shows that bnx2fcrecvframe() is modifying the per_cpu lport stats counters in a non-mpsafe way. Just boot a debug kernel and run the bnx2fc driver with the hardware enabled.
[ 1391.699147] BUG: using smpprocessorid() in preemptible [00000000] code: bnx2fc_ [ 1391.699160] caller is bnx2fcrecvframe+0xbf9/0x1760 [bnx2fc] [ 1391.699174] CPU: 2 PID: 4355 Comm: bnx2fcl2threa Kdump: loaded Tainted: G B [ 1391.699180] Hardware name: HP ProLiant DL120 G7, BIOS J01 07/01/2013 [ 1391.699183] Call Trace: [ 1391.699188] dumpstacklvl+0x57/0x7d [ 1391.699198] checkpreemptiondisabled+0xc8/0xd0 [ 1391.699205] bnx2fcrecvframe+0xbf9/0x1760 [bnx2fc] [ 1391.699215] ? dorawspintrylock+0xb5/0x180 [ 1391.699221] ? bnx2fcnpivcreatevports.isra.0+0x4e0/0x4e0 [bnx2fc] [ 1391.699229] ? bnx2fcl2rcvthread+0xb7/0x3a0 [bnx2fc] [ 1391.699240] bnx2fcl2rcvthread+0x1af/0x3a0 [bnx2fc] [ 1391.699250] ? bnx2fculpinit+0xc0/0xc0 [bnx2fc] [ 1391.699258] kthread+0x364/0x420 [ 1391.699263] ? rawspinunlockirq+0x24/0x50 [ 1391.699268] ? setkthreadstruct+0x100/0x100 [ 1391.699273] retfromfork+0x22/0x30
Restore the old getcpu/putcpu code with some modifications to reduce the size of the critical section.
- Database specific
{ "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/48xxx/CVE-2022-48715.json", "cna_assigner": "Linux" }- References
-
- https://git.kernel.org/stable/c/003bcee66a8f0e76157eb3af369c173151901d97
- https://git.kernel.org/stable/c/2d24336c7214b281b51860e54783dfc65f1248df
- https://git.kernel.org/stable/c/2f5a1ac68bdf2899ce822ab845081922ea8c588e
- https://git.kernel.org/stable/c/3a345198a7c2d1db2526dc60b77052f75de019d3
- https://git.kernel.org/stable/c/471085571f926a1fe6b1bed095638994dbf23990
- https://git.kernel.org/stable/c/53e4f71763c61a557283eb43301efd671922d1e8
- https://git.kernel.org/stable/c/936bd03405fc83ba039d42bc93ffd4b88418f1d3
- https://git.kernel.org/stable/c/ec4334152dae175dbd8fd5bde1d2139bbe7b42d0
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/48xxx/CVE-2022-48715.json
- https://nvd.nist.gov/vuln/detail/CVE-2022-48715
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedd576a5e80cd07ea7049f8fd7b303c14df7b5d7d2Fixed3a345198a7c2d1db2526dc60b77052f75de019d3Fixed471085571f926a1fe6b1bed095638994dbf23990Fixed003bcee66a8f0e76157eb3af369c173151901d97Fixed53e4f71763c61a557283eb43301efd671922d1e8Fixedec4334152dae175dbd8fd5bde1d2139bbe7b42d0Fixed2f5a1ac68bdf2899ce822ab845081922ea8c588eFixed2d24336c7214b281b51860e54783dfc65f1248dfFixed936bd03405fc83ba039d42bc93ffd4b88418f1d3
Linux / Kernel
Package
- Name
- Kernel
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced3.16.0Fixed4.9.300
- Type
- ECOSYSTEM
- Events
-
Introduced4.10.0Fixed4.14.265
- Type
- ECOSYSTEM
- Events
-
Introduced4.15.0Fixed4.19.228
- Type
- ECOSYSTEM
- Events
-
Introduced4.20.0Fixed5.4.178
- Type
- ECOSYSTEM
- Events
-
Introduced5.5.0Fixed5.10.99
- Type
- ECOSYSTEM
- Events
-
Introduced5.11.0Fixed5.15.22
- Type
- ECOSYSTEM
- Events
-
Introduced5.16.0Fixed5.16.8