一、 漏洞 CVE-2022-49089 基础信息
漏洞标题
IB/rdmavt: 添加锁以防止在调用rvt_error_qp时发生竞争条件
来源:AIGC 神龙大模型
漏洞描述信息
在 Linux 内核中,已解决以下漏洞: IB/rdmavt:为 rvt_error_qp 调用添加锁以防止竞争条件 函数 rvt_error_qp 的文档说明,在调用该函数时需要同时持有 r_lock 和 s_lock。同时,它还使用 lockdep 确认这两个锁已被持有。然而,我在 Fixes 中引用的提交意外地使 rvt_ruc_loopback 中对 rvt_error_qp 的调用不再受 r_lock 保护。这将导致 lockdep 断言失败,并可能引发竞争条件。
来源:AIGC 神龙大模型
CVSS信息
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
来源:AIGC 神龙大模型
漏洞类别
使用共享资源的并发执行不恰当同步问题(竞争条件)
来源:AIGC 神龙大模型
漏洞标题
IB/rdmavt: add lock to call to rvt_error_qp to prevent a race condition
来源:美国国家漏洞数据库 NVD
漏洞描述信息
In the Linux kernel, the following vulnerability has been resolved: IB/rdmavt: add lock to call to rvt_error_qp to prevent a race condition The documentation of the function rvt_error_qp says both r_lock and s_lock need to be held when calling that function. It also asserts using lockdep that both of those locks are held. However, the commit I referenced in Fixes accidentally makes the call to rvt_error_qp in rvt_ruc_loopback no longer covered by r_lock. This results in the lockdep assertion failing and also possibly in a race condition.
来源:美国国家漏洞数据库 NVD
CVSS信息
N/A
来源:美国国家漏洞数据库 NVD
漏洞类别
N/A
来源:美国国家漏洞数据库 NVD
二、漏洞 CVE-2022-49089 的公开POC
# POC 描述 源链接 神龙链接
三、漏洞 CVE-2022-49089 的情报信息

  • 标题: IB/rdmavt: add lock to call to rvt_error_qp to prevent a race condition - kernel/git/stable/linux.git - Linux kernel stable tree -- 🔗来源链接

    标签:

    IB/rdmavt: add lock to call to rvt_error_qp to prevent a race condition - kernel/git/stable/linux.git - Linux kernel stable tree

  • 标题: IB/rdmavt: add lock to call to rvt_error_qp to prevent a race condition - kernel/git/stable/linux.git - Linux kernel stable tree -- 🔗来源链接

    标签:

    IB/rdmavt: add lock to call to rvt_error_qp to prevent a race condition - kernel/git/stable/linux.git - Linux kernel stable tree

  • 标题: IB/rdmavt: add lock to call to rvt_error_qp to prevent a race condition - kernel/git/stable/linux.git - Linux kernel stable tree -- 🔗来源链接

    标签:

    IB/rdmavt: add lock to call to rvt_error_qp to prevent a race condition - kernel/git/stable/linux.git - Linux kernel stable tree

  • 标题: IB/rdmavt: add lock to call to rvt_error_qp to prevent a race condition - kernel/git/stable/linux.git - Linux kernel stable tree -- 🔗来源链接

    标签:

    IB/rdmavt: add lock to call to rvt_error_qp to prevent a race condition - kernel/git/stable/linux.git - Linux kernel stable tree

  • 标题: IB/rdmavt: add lock to call to rvt_error_qp to prevent a race condition - kernel/git/stable/linux.git - Linux kernel stable tree -- 🔗来源链接

    标签:

    IB/rdmavt: add lock to call to rvt_error_qp to prevent a race condition - kernel/git/stable/linux.git - Linux kernel stable tree

  • 标题: IB/rdmavt: add lock to call to rvt_error_qp to prevent a race condition - kernel/git/stable/linux.git - Linux kernel stable tree -- 🔗来源链接

    标签:

    IB/rdmavt: add lock to call to rvt_error_qp to prevent a race condition - kernel/git/stable/linux.git - Linux kernel stable tree
  • https://nvd.nist.gov/vuln/detail/CVE-2022-49089