Linux Kernel Vulnerability in Coresight Product from Vendor
CVE-2022-50319
What is CVE-2022-50319?
A resource management vulnerability exists within the Linux kernel in the Coresight component. This issue has been observed when using the cpuhp_state_add_instance() and cpuhp_state_remove_instance() functions, which should be paired correctly to avoid issues during the removal of the cpuhp instance. Failure to adhere to this protocol can lead to warnings during cpuhp state removal operations, potentially destabilizing the system. When an attempt is made to remove a cpuhp state that still has instances associated with it, a warning is generated, calling attention to incomplete cleanup that could affect the kernel's operational integrity. It is crucial for system administrators to ensure that their kernel is updated to mitigate potential risks associated with this vulnerability.
Affected Version(s)
Linux 3fbf7f011f2426dac8c982f1d2ef469a7959a524 < 18b9202188a4e59923834c60b5c82ea1da7d1811
Linux 3fbf7f011f2426dac8c982f1d2ef469a7959a524 < 2ea334960afcd49385840c7afd59fc5f8d3ce682
Linux 3fbf7f011f2426dac8c982f1d2ef469a7959a524 < 3c18888bc0b51835c74123b1e04d5df11543724c