#VU96444 Resource management error in Linux kernel - CVE-2022-48931

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the DECLARE_RWSEM(), configfs_register_subsystem() and configfs_unregister_subsystem() functions in fs/configfs/dir.c. A local user can perform a denial of service (DoS) attack.

Remediation

External links

• https://git.kernel.org/stable/c/40805099af11f68c5ca7dbcfacf455da8f99f622
• https://git.kernel.org/stable/c/d1654de19d42f513b6cfe955cc77e7f427e05a77
• https://git.kernel.org/stable/c/a37024f7757c25550accdebf49e497ad6ae239fe
• https://git.kernel.org/stable/c/b7e2b91fcb5c78c414e33dc8d50642e307ca0c5a
• https://git.kernel.org/stable/c/a7ab53d3c27dfe83bb594456b9f38a37796ec39b
• https://git.kernel.org/stable/c/e7a66dd2687758718eddd79b542a95cf3aa488cc
• https://git.kernel.org/stable/c/3aadfd46858b1f64d4d6a0654b863e21aabff975
• https://git.kernel.org/stable/c/84ec758fb2daa236026506868c8796b0500c047d
• https://mirrors.edge.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.14.269
• https://mirrors.edge.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.232
• https://mirrors.edge.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.9.304
• https://mirrors.edge.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.103
• https://mirrors.edge.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.15.26
• https://mirrors.edge.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.16.12
• https://mirrors.edge.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.17
• https://mirrors.edge.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.4.182