#VU67478 Race condition in Linux kernel - CVE-2022-39188


Vulnerability identifier: #VU67478

Vulnerability risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-39188

CWE-ID: CWE-362

Exploitation vector: Local

Exploit availability: No

Vulnerable software:
Linux kernel
Operating systems & Components / Operating system

Vendor: Linux Foundation

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a race condition within include/asm-generic/tlb.h in the Linux kernel. A local user can exploit the race and escalate privileges on the system.

Note, this only occurs in situations with VM_PFNMAP VMAs.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

Linux kernel: before 5.19

External links
https://github.com/torvalds/linux/commit/b67fbebd4cf980aecbcc750e1462128bffe8ae15
https://lore.kernel.org/stable/CAG48ez3SEqOPcPCYGHVZv4iqEApujD5VtM3Re-tCKLDEFdEdbg@mail.gmail.com/
https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.19
https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=b67fbebd4cf980aecbcc750e1462128bffe8ae15
https://bugs.chromium.org/p/project-zero/issues/detail?id=2329

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?


Latest bulletins with this vulnerability


Multiple vulnerabilities in Dell RecoverPoint for Virtual Machines
Amazon Linux AMI update for kernel
Multiple vulnerabilities in Juniper Networks Session Smart Router
Anolis OS update for kernel
Anolis OS update for kernel
Multiple vulnerabilities in IBM Cloud Pak for Watson AIOps
Red Hat Enterprise Linux 9.0 Extended Update Support update for kernel
Red Hat Enterprise Linux 9.0 Extended Update Support update for kernel-rt
Anolis OS update for kernel(ANCK)5.10
Anolis OS update for kernel(ANCK)5.10