CVE-2022-49220

MEDIUM EPSS 15.9%
Published Feb 26, 20251y ago · Modified Jun 17, 20262w ago
5.5 CVSS 3.1
Medium
Find Similar
Published Feb 26, 2025 1y ago
Last Modified Jun 17, 2026 2w ago

Description

In the Linux kernel, the following vulnerability has been resolved: dax: make sure inodes are flushed before destroy cache A bug can be triggered by following command $ modprobe nd_pmem && modprobe -r nd_pmem [ 10.060014] BUG dax_cache (Not tainted): Objects remaining in dax_cache on __kmem_cache_shutdown() [ 10.060938] Slab 0x0000000085b729ac objects=9 used=1 fp=0x000000004f5ae469 flags=0x200000000010200(slab|head|node) [ 10.062433] Call Trace: [ 10.062673] dump_stack_lvl+0x34/0x44 [ 10.062865] slab_err+0x90/0xd0 [ 10.063619] __kmem_cache_shutdown+0x13b/0x2f0 [ 10.063848] kmem_cache_destroy+0x4a/0x110 [ 10.064058] __x64_sys_delete_module+0x265/0x300 This is caused by dax_fs_exit() not flushing inodes before destroy cache. To fix this issue, call rcu_barrier() before destroy cache.

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
15.9% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Affected Products 5

VendorProductVersionRange
linuxlinux_kernel*≥4.12  –  <5.4.189
linuxlinux_kernel*≥5.5  –  <5.10.110
linuxlinux_kernel*≥5.11  –  <5.15.33
linuxlinux_kernel*≥5.16  –  <5.16.19
linuxlinux_kernel*≥5.17  –  <5.17.2

References 6

  • git.kernel.org https://git.kernel.org/stable/c/770d42fff12d8595adda9025a0b92091f543e775
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/a7e8de822e0b1979f08767c751f6c8a9c1d4ad86
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/b786abe7c67c6ef71410c8e23292b3091d616ad1
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/e2951eaa9398415ac054b7bd80b8163b6838ead4
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ec376f5c11c88c0215d173599db8449cd4196759
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/f2a1e0eb70c2d954176c07d75d28742bde30e9f3
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/770d42fff12d8595adda9025a0b92091f543e775
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/a7e8de822e0b1979f08767c751f6c8a9c1d4ad86
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/b786abe7c67c6ef71410c8e23292b3091d616ad1
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/e2951eaa9398415ac054b7bd80b8163b6838ead4
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ec376f5c11c88c0215d173599db8449cd4196759
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/f2a1e0eb70c2d954176c07d75d28742bde30e9f3
    Patch