CVE-2022-48715

Source
https://nvd.nist.gov/vuln/detail/CVE-2022-48715
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-48715.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2022-48715
Related
Published
2024-06-20T11:15:55Z
Modified
2024-09-11T04:57:00.124456Z
Summary
[none]
Details

In the Linux kernel, the following vulnerability has been resolved:

scsi: bnx2fc: Make bnx2fcrecvframe() mp safe

Running tests with a debug kernel shows that bnx2fcrecvframe() is modifying the per_cpu lport stats counters in a non-mpsafe way. Just boot a debug kernel and run the bnx2fc driver with the hardware enabled.

[ 1391.699147] BUG: using smpprocessorid() in preemptible [00000000] code: bnx2fc_ [ 1391.699160] caller is bnx2fcrecvframe+0xbf9/0x1760 [bnx2fc] [ 1391.699174] CPU: 2 PID: 4355 Comm: bnx2fcl2threa Kdump: loaded Tainted: G B [ 1391.699180] Hardware name: HP ProLiant DL120 G7, BIOS J01 07/01/2013 [ 1391.699183] Call Trace: [ 1391.699188] dumpstacklvl+0x57/0x7d [ 1391.699198] checkpreemptiondisabled+0xc8/0xd0 [ 1391.699205] bnx2fcrecvframe+0xbf9/0x1760 [bnx2fc] [ 1391.699215] ? dorawspintrylock+0xb5/0x180 [ 1391.699221] ? bnx2fcnpivcreatevports.isra.0+0x4e0/0x4e0 [bnx2fc] [ 1391.699229] ? bnx2fcl2rcvthread+0xb7/0x3a0 [bnx2fc] [ 1391.699240] bnx2fcl2rcvthread+0x1af/0x3a0 [bnx2fc] [ 1391.699250] ? bnx2fculpinit+0xc0/0xc0 [bnx2fc] [ 1391.699258] kthread+0x364/0x420 [ 1391.699263] ? rawspinunlockirq+0x24/0x50 [ 1391.699268] ? setkthreadstruct+0x100/0x100 [ 1391.699273] retfromfork+0x22/0x30

Restore the old getcpu/putcpu code with some modifications to reduce the size of the critical section.

References

Affected packages

Debian:11 / linux

Package

Name
linux
Purl
pkg:deb/debian/linux?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.10.103-1

Affected versions

5.*

5.10.46-4
5.10.46-5
5.10.70-1~bpo10+1
5.10.70-1
5.10.84-1
5.10.92-1~bpo10+1
5.10.92-1
5.10.92-2
5.10.103-1~bpo10+1

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:12 / linux

Package

Name
linux
Purl
pkg:deb/debian/linux?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.16.10-1

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:13 / linux

Package

Name
linux
Purl
pkg:deb/debian/linux?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.16.10-1

Ecosystem specific

{
    "urgency": "not yet assigned"
}