CVE-2022-49053

scsi: target: tcmu: Fix possible page UAF

Description

In the Linux kernel, the following vulnerability has been resolved: scsi: target: tcmu: Fix possible page UAF tcmu_try_get_data_page() looks up pages under cmdr_lock, but it does not take refcount properly and just returns page pointer. When tcmu_try_get_data_page() returns, the returned page may have been freed by tcmu_blocks_release(). We need to get_page() under cmdr_lock to avoid concurrent tcmu_blocks_release().

References

Link	Tags
https://git.kernel.org/stable/c/d7c5d79e50be6e06b669141e3db1f977a0dd4e8e	patch
https://git.kernel.org/stable/c/e3e0e067d5b34e4a68e3cc55f8eebc413f56f8ed	patch
https://git.kernel.org/stable/c/fb7a5115422fbd6a4d505e8844f1ef5529f10489	patch
https://git.kernel.org/stable/c/aec36b98a1bbaa84bfd8299a306e4c12314af626	patch
https://git.kernel.org/stable/c/b7f3b5d70c834f49f7d87a2f2ed1c6284d9a0322	patch
https://git.kernel.org/stable/c/a9564d84ed9f6ee71017d062d0d2182154294a4b	patch
https://git.kernel.org/stable/c/a6968f7a367f128d120447360734344d5a3d5336	patch

Frequently Asked Questions

What is the severity of CVE-2022-49053?: CVE-2022-49053 has been scored as a high severity vulnerability.
How to fix CVE-2022-49053?: To fix CVE-2022-49053, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2022-49053 being actively exploited in the wild?: As for now, there are no information to confirm that CVE-2022-49053 is being actively exploited. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2022-49053?: CVE-2022-49053 affects Linux Linux, Linux Linux.

Description

Category

CWE-416 – Use After Free

References

Frequently Asked Questions