In the Linux kernel, the following vulnerability has been resolved:
net/smc: Avoid overwriting the copies of clcsock callback functions
The callback functions of clcsock will be saved and replaced during
the fallback. But if the fallback happens more than once, then the
copies of these callback functions will be overwritten incorrectly,
resulting in a loop call issue:
clcsk->sk_error_report
|- smc_fback_error_report() <------------------------------|
|- smc_fback_forward_wakeup() | (loop)
|- clcsock_callback() (incorrectly overwritten) |
|- smc->clcsk_error_report() ------------------|
So this patch fixes the issue by saving these function pointers only
once in the fallback and avoiding overwriting.
Metrics
Affected Vendors & Products
References
History
Wed, 11 Sep 2024 13:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Mon, 26 Aug 2024 10:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Weaknesses | CWE-835 |
MITRE
Status: PUBLISHED
Assigner: Linux
Published: 2024-07-16T11:13:17.827Z
Updated: 2024-12-19T08:07:35.649Z
Reserved: 2024-06-20T11:09:39.067Z
Link: CVE-2022-48780
Vulnrichment
Updated: 2024-08-03T15:25:01.873Z
NVD
Status : Awaiting Analysis
Published: 2024-07-16T12:15:03.143
Modified: 2024-11-21T07:34:00.517
Link: CVE-2022-48780
Redhat