Linux Kernel Vulnerability in LoongArch CPU Information Display
CVE-2022-50223

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 18 June 2025

What is CVE-2022-50223?

A vulnerability in the Linux kernel's handling of CPU information for LoongArch architecture could lead to runtime warnings when displaying information from /proc/cpuinfo. This occurs when specific configurations, namely CONFIG_CPUMASK_OFFSTACK and CONFIG_DEBUG_PER_CPU_MAPS, are enabled. The issue arises from the incorrect use of NR_CPUS instead of the runtime limit, nr_cpu_ids, causing inaccurate information and potential confusion during system diagnostics. A resolution has been implemented to eliminate these warnings by correcting the CPU iteration process.

Affected Version(s)

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 37268c7badd36f5381056d1651a6ee0b63b8ff3c

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 28e112afa44ad0814120d41c68fa72372a2cd2c2

Linux 5.19.2 <= 5.19.*

References

https://git.kernel.org/stable/c/37268c7badd36f5381056d165...

https://git.kernel.org/stable/c/28e112afa44ad0814120d41c6...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 18, 2025
Vulnerability Reserved
Jun 18, 2025