| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <2025050107-CVE-2022-49917-50af@gregkh> Date: Thu, 1 May 2025 16:11:47 +0200 From: Greg Kroah-Hartman <gregkh@...uxfoundation.org> To: linux-cve-announce@...r.kernel.org Cc: Greg Kroah-Hartman <gregkh@...nel.org> Subject: CVE-2022-49917: ipvs: fix WARNING in ip_vs_app_net_cleanup() From: Greg Kroah-Hartman <gregkh@...nel.org> Description =========== In the Linux kernel, the following vulnerability has been resolved: ipvs: fix WARNING in ip_vs_app_net_cleanup() During the initialization of ip_vs_app_net_init(), if file ip_vs_app fails to be created, the initialization is successful by default. Therefore, the ip_vs_app file doesn't be found during the remove in ip_vs_app_net_cleanup(). It will cause WRNING. The following is the stack information: name 'ip_vs_app' WARNING: CPU: 1 PID: 9 at fs/proc/generic.c:712 remove_proc_entry+0x389/0x460 Modules linked in: Workqueue: netns cleanup_net RIP: 0010:remove_proc_entry+0x389/0x460 Call Trace: <TASK> ops_exit_list+0x125/0x170 cleanup_net+0x4ea/0xb00 process_one_work+0x9bf/0x1710 worker_thread+0x665/0x1080 kthread+0x2e4/0x3a0 ret_from_fork+0x1f/0x30 </TASK> The Linux kernel CVE team has assigned CVE-2022-49917 to this issue. Affected and fixed versions =========================== Issue introduced in 2.6.24 with commit 457c4cbc5a3dde259d2a1f15d5f9785290397267 and fixed in 4.19.265 with commit adc76740ccd52e4a1d910767cd1223e134a7078b Issue introduced in 2.6.24 with commit 457c4cbc5a3dde259d2a1f15d5f9785290397267 and fixed in 5.4.224 with commit 8457a00c981fe1a799ce34123908856b0f5973b8 Issue introduced in 2.6.24 with commit 457c4cbc5a3dde259d2a1f15d5f9785290397267 and fixed in 5.10.154 with commit 2c8d81bdb2684d53d6cedad7410ba4cf9090e343 Issue introduced in 2.6.24 with commit 457c4cbc5a3dde259d2a1f15d5f9785290397267 and fixed in 5.15.78 with commit 06d7596d18725f1a93cf817662d36050e5afb989 Issue introduced in 2.6.24 with commit 457c4cbc5a3dde259d2a1f15d5f9785290397267 and fixed in 6.0.8 with commit 97f872b00937f2689bff2dab4ad9ed259482840f Issue introduced in 2.6.24 with commit 457c4cbc5a3dde259d2a1f15d5f9785290397267 and fixed in 6.1 with commit 5663ed63adb9619c98ab7479aa4606fa9b7a548c Please see https://www.kernel.org for a full list of currently supported kernel versions by the kernel community. Unaffected versions might change over time as fixes are backported to older supported kernel versions. The official CVE entry at https://cve.org/CVERecord/?id=CVE-2022-49917 will be updated if fixes are backported, please check that for the most up to date information about this issue. Affected files ============== The file(s) affected by this issue are: net/netfilter/ipvs/ip_vs_app.c Mitigation ========== The Linux kernel CVE team recommends that you update to the latest stable kernel version for this, and many other bugfixes. Individual changes are never tested alone, but rather are part of a larger kernel release. Cherry-picking individual commits is not recommended or supported by the Linux kernel community at all. If however, updating to the latest release is impossible, the individual changes to resolve this issue can be found at these commits: https://git.kernel.org/stable/c/adc76740ccd52e4a1d910767cd1223e134a7078b https://git.kernel.org/stable/c/8457a00c981fe1a799ce34123908856b0f5973b8 https://git.kernel.org/stable/c/2c8d81bdb2684d53d6cedad7410ba4cf9090e343 https://git.kernel.org/stable/c/06d7596d18725f1a93cf817662d36050e5afb989 https://git.kernel.org/stable/c/97f872b00937f2689bff2dab4ad9ed259482840f https://git.kernel.org/stable/c/5663ed63adb9619c98ab7479aa4606fa9b7a548c
Powered by blists - more mailing lists