CVE-2022-49034

Advisory lineage Upstream: 0 Downstream: 35

Downstream

DEBIAN-CVE-2022-49034 DLA-4076-1 UBUNTU-CVE-2022-49034 USN-7310-1 USN-7387-1 USN-7387-2

Modified

Published: 27 Dec 2024, 13:49

Last modified:11 May 2026, 18:51

Vulnerability Summary

Overall Risk (default)

low

22/100

CVSS Score

5.5 MEDIUM

v3.1 (nvd)

EPSS Score

<0.01% LOW

0% probability -0.02%

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

27 Dec 2024, 13:49

Published

Vulnerability first disclosed

11 May 2026, 18:51

Last Modified

Vulnerability information updated

Description

In the Linux kernel, the following vulnerability has been resolved: sh: cpuinfo: Fix a warning for CONFIG_CPUMASK_OFFSTACK When CONFIG_CPUMASK_OFFSTACK and CONFIG_DEBUG_PER_CPU_MAPS are selected, cpu_max_bits_warn() generates a runtime warning similar as below when showing /proc/cpuinfo. Fix this by using nr_cpu_ids (the runtime limit) instead of NR_CPUS to iterate CPUs. [ 3.052463] ------------[ cut here ]------------ [ 3.059679] WARNING: CPU: 3 PID: 1 at include/linux/cpumask.h:108 show_cpuinfo+0x5e8/0x5f0 [ 3.070072] Modules linked in: efivarfs autofs4 [ 3.076257] CPU: 0 PID: 1 Comm: systemd Not tainted 5.19-rc5+ #1052 [ 3.099465] Stack : 9000000100157b08 9000000000f18530 9000000000cf846c 9000000100154000 [ 3.109127] 9000000100157a50 0000000000000000 9000000100157a58 9000000000ef7430 [ 3.118774] 90000001001578e8 0000000000000040 0000000000000020 ffffffffffffffff [ 3.128412] 0000000000aaaaaa 1ab25f00eec96a37 900000010021de80 900000000101c890 [ 3.138056] 0000000000000000 0000000000000000 0000000000000000 0000000000aaaaaa [ 3.147711] ffff8000339dc220 0000000000000001 0000000006ab4000 0000000000000000 [ 3.157364] 900000000101c998 0000000000000004 9000000000ef7430 0000000000000000 [ 3.167012] 0000000000000009 000000000000006c 0000000000000000 0000000000000000 [ 3.176641] 9000000000d3de08 9000000001639390 90000000002086d8 00007ffff0080286 [ 3.186260] 00000000000000b0 0000000000000004 0000000000000000 0000000000071c1c [ 3.195868] ... [ 3.199917] Call Trace: [ 3.203941] [<90000000002086d8>] show_stack+0x38/0x14c [ 3.210666] [<9000000000cf846c>] dump_stack_lvl+0x60/0x88 [ 3.217625] [<900000000023d268>] __warn+0xd0/0x100 [ 3.223958] [<9000000000cf3c90>] warn_slowpath_fmt+0x7c/0xcc [ 3.231150] [<9000000000210220>] show_cpuinfo+0x5e8/0x5f0 [ 3.238080] [<90000000004f578c>] seq_read_iter+0x354/0x4b4 [ 3.245098] [<90000000004c2e90>] new_sync_read+0x17c/0x1c4 [ 3.252114] [<90000000004c5174>] vfs_read+0x138/0x1d0 [ 3.258694] [<90000000004c55f8>] ksys_read+0x70/0x100 [ 3.265265] [<9000000000cfde9c>] do_syscall+0x7c/0x94 [ 3.271820] [<9000000000202fe4>] handle_syscall+0xc4/0x160 [ 3.281824] ---[ end trace 8b484262b4b8c24c ]---

CVSS Metrics

v3.1•MEDIUM•Score: 5.5CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

EPSS Trends

Current EPSS score: 0.01%• Percentile: 1%

Affected Systems

linux•linux
≥ 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2, < 8fbb57eabfc8ae67115cb47f904614c99d626a89 | ≥ 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2, < f8f26cf69003a37ffa947631fc0e6fe6daee624a | ≥ 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2, < 77755dc95ff2f9a3e473acc1e039f498629949ea | ≥ 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2, < e2b91997db286a5dd3cca6d5d9c20004851f22eb | ≥ 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2, < 2b6b8e011fab680a223b5e07a3c64774156ec6fe | ≥ 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2, < 09faf32c682ea4a547200b8b9e04d8b3c8e84b55 | ≥ 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2, < 39373f6f89f52770a5405d30dddd08a27d097872 | ≥ 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2, < 701e32900683378d93693fec15d133e2c5f7ada2 | ≥ 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2, < 3c891f7c6a4e90bb1199497552f24b26e46383bc | 2.6.12
linux•linux_kernel
< 4.19.325 | ≥ 4.20, < 5.4.287 | ≥ 5.5, < 5.10.231 | ≥ 5.11, < 5.15.174 | ≥ 5.16, < 6.1.120 | ≥ 6.2, < 6.6.64 | ≥ 6.7, < 6.11.11 | ≥ 6.12, < 6.12.2