CVE-2022-49033
- Source
- https://cve.org/CVERecord?id=CVE-2022-49033
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-49033.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2022-49033
- Downstream
- Related
- Published
- 2024-10-21T20:06:36.566Z
- Modified
- 2026-04-11T12:43:28.324257Z
- Summary
- btrfs: qgroup: fix sleep from invalid context bug in btrfs_qgroup_inherit()
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
btrfs: qgroup: fix sleep from invalid context bug in btrfsqgroupinherit()
Syzkaller reported BUG as follows:
BUG: sleeping function called from invalid context at include/linux/sched/mm.h:274 Call Trace: <TASK> dumpstacklvl+0xcd/0x134 __mightresched.cold+0x222/0x26b kmemcachealloc+0x2e7/0x3c0 updateqgrouplimititem+0xe1/0x390 btrfsqgroupinherit+0x147b/0x1ee0 createsubvol+0x4eb/0x1710 btrfsmksubvol+0xfe5/0x13f0 __btrfsioctlsnapcreate+0x2b0/0x430 btrfsioctlsnapcreatev2+0x25a/0x520 btrfsioctl+0x2a1c/0x5ce0 __x64sysioctl+0x193/0x200 dosyscall64+0x35/0x80
Fix this by calling qgroupdirty() on @dstqgroup, and update limit item in btrfsrun_qgroups() later outside of the spinlock context.
- Database specific
{ "cna_assigner": "Linux", "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/49xxx/CVE-2022-49033.json" }- References
-
- https://git.kernel.org/stable/c/01d7c41eac9129fba80d8aed0060caab4a7dbe09
- https://git.kernel.org/stable/c/044da1a371a0da579e805e89c96865f62d8f6f69
- https://git.kernel.org/stable/c/3c98e91be6aea4c7acf09da6eb0c107ea9186bb5
- https://git.kernel.org/stable/c/588ae4fdd8b11788a797776b10d6c44ae12bc133
- https://git.kernel.org/stable/c/89840b12c8fad7200eb6478525c13261512c01be
- https://git.kernel.org/stable/c/8eb912af525042a7365295eb62f6d5270c2a6462
- https://git.kernel.org/stable/c/f4b930a1602b05e77fee31f9616599b25e910a86
- https://git.kernel.org/stable/c/f7e942b5bb35d8e3af54053d19a6bf04143a3955
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/49xxx/CVE-2022-49033.json
- https://nvd.nist.gov/vuln/detail/CVE-2022-49033
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducede8c8541ac379709db8d2339e1cb720469fc2cd8fFixed89840b12c8fad7200eb6478525c13261512c01beFixed3c98e91be6aea4c7acf09da6eb0c107ea9186bb5Fixedf4b930a1602b05e77fee31f9616599b25e910a86Fixed8eb912af525042a7365295eb62f6d5270c2a6462Fixed01d7c41eac9129fba80d8aed0060caab4a7dbe09Fixed044da1a371a0da579e805e89c96865f62d8f6f69Fixed588ae4fdd8b11788a797776b10d6c44ae12bc133Fixedf7e942b5bb35d8e3af54053d19a6bf04143a3955
Linux / Kernel
Package
- Name
- Kernel
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced4.1.0Fixed4.9.335
- Type
- ECOSYSTEM
- Events
-
Introduced4.10.0Fixed4.14.301
- Type
- ECOSYSTEM
- Events
-
Introduced4.15.0Fixed4.19.268
- Type
- ECOSYSTEM
- Events
-
Introduced4.20.0Fixed5.4.226
- Type
- ECOSYSTEM
- Events
-
Introduced5.5.0Fixed5.10.158
- Type
- ECOSYSTEM
- Events
-
Introduced5.11.0Fixed5.15.82
- Type
- ECOSYSTEM
- Events
-
Introduced5.16.0Fixed6.0.12