CVE-2022-48714

bpf: Use VM_MAP instead of VM_ALLOC for ringbuf

Description

In the Linux kernel, the following vulnerability has been resolved: bpf: Use VM_MAP instead of VM_ALLOC for ringbuf After commit 2fd3fb0be1d1 ("kasan, vmalloc: unpoison VM_ALLOC pages after mapping"), non-VM_ALLOC mappings will be marked as accessible in __get_vm_area_node() when KASAN is enabled. But now the flag for ringbuf area is VM_ALLOC, so KASAN will complain out-of-bound access after vmap() returns. Because the ringbuf area is created by mapping allocated pages, so use VM_MAP instead. After the change, info in /proc/vmallocinfo also changes from [start]-[end] 24576 ringbuf_map_alloc+0x171/0x290 vmalloc user to [start]-[end] 24576 ringbuf_map_alloc+0x171/0x290 vmap user

N/A
CVSS
Severity:
EPSS 0.07%
Affected: Linux Linux
Affected: Linux Linux
Published at:
Updated at:

References

Link Tags
https://git.kernel.org/stable/c/6304a613a97d6dcd49b93fbad31e9f39d1e138d6
https://git.kernel.org/stable/c/5e457aeab52a5947619e1f18047f4d2f3212b3eb
https://git.kernel.org/stable/c/d578933f6226d5419af9306746efa1c693cbaf9c
https://git.kernel.org/stable/c/b293dcc473d22a62dc6d78de2b15e4f49515db56

Frequently Asked Questions

What is the severity of CVE-2022-48714?
CVE-2022-48714 has not yet been assigned a CVSS score.
How to fix CVE-2022-48714?
To fix CVE-2022-48714, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2022-48714 being actively exploited in the wild?
As for now, there are no information to confirm that CVE-2022-48714 is being actively exploited. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2022-48714?
CVE-2022-48714 affects Linux Linux, Linux Linux.
This platform uses data from the NIST NVD, MITRE CVE, MITRE CWE, First.org and CISA KEV but is not endorsed or certified by these entities. CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site.
© 2025 Under My Watch. All Rights Reserved.