CVE-2022-49542
- Source
- https://cve.org/CVERecord?id=CVE-2022-49542
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-49542.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2022-49542
- Downstream
- Related
- Published
- 2025-02-26T02:13:56.961Z
- Modified
- 2026-03-12T03:25:21.598083Z
- Severity
-
- 5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- scsi: lpfc: Move cfg_log_verbose check before calling lpfc_dmp_dbg()
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
scsi: lpfc: Move cfglogverbose check before calling lpfcdmpdbg()
In an attempt to log message 0126 with LOGTRACEEVENT, the following hard lockup call trace hangs the system.
Call Trace: rawspinlockirqsave+0x32/0x40 lpfcdmpdbg.part.32+0x28/0x220 [lpfc] lpfccmplelsfdisc+0x145/0x460 [lpfc] lpfcslicanceljobs+0x92/0xd0 [lpfc] lpfcelsflushcmd+0x43c/0x670 [lpfc] lpfcelsflushallcmd+0x37/0x60 [lpfc] lpfcsli4asynceventproc+0x956/0x1720 [lpfc] lpfcdowork+0x1485/0x1d70 [lpfc] kthread+0x112/0x130 retfrom_fork+0x1f/0x40 Kernel panic - not syncing: Hard LOCKUP
The same CPU tries to claim the phba->portlistlock twice.
Move the cfglogverbose checks as part of the lpfcprintfvlog() and lpfcprintflog() macros before calling lpfcdmpdbg(). There is no need to take the phba->portlistlock within lpfcdmpdbg().
- Database specific
{ "cna_assigner": "Linux", "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/49xxx/CVE-2022-49542.json" }- References
-
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- https://git.kernel.org/stable/c/09c772557a4fd9490fed1bfb133268313ea22213
- https://git.kernel.org/stable/c/271725e4028559ae7974d762a8467dc9de412f2e
- https://git.kernel.org/stable/c/cc6501afccec55b8b6c90584cbf71f1fefa77d1e
- https://git.kernel.org/stable/c/e294647b1aed4247fe52851f3a3b2b19ae906228
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/49xxx/CVE-2022-49542.json
- https://nvd.nist.gov/vuln/detail/CVE-2022-49542
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced0b3ad32e26460affc9d4b2f9c32d7c228e8b0cfbFixed271725e4028559ae7974d762a8467dc9de412f2eFixedcc6501afccec55b8b6c90584cbf71f1fefa77d1eFixed09c772557a4fd9490fed1bfb133268313ea22213Fixede294647b1aed4247fe52851f3a3b2b19ae906228