[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2022-49440":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T08:53:30.047Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":18,"aliases":19,"duplicate_of":9,"upstream":20,"downstream":21,"duplicates":38,"related":39,"reserved_at":9,"published_at":44,"modified_at":45,"state":46,"summary":47,"references_raw":56,"kevs":75,"epss":76,"epss_history":79,"metrics":351,"affected":357},"CVE-2022-49440","In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/rtas: Keep MSR[RI] set when calling RTAS\n\nRTAS runs in real mode (MSR[DR] and MSR[IR] unset) and in 32-bit big\nendian mode (MSR[SF,LE] unset).\n\nThe change in MSR is done in enter_rtas() in a relatively complex way,\nsince the MSR value could be hardcoded.\n\nFurthermore, a panic has been reported when hitting the watchdog interrupt\nwhile running in RTAS, this leads to the following stack trace:\n\n  watchdog: CPU 24 Hard LOCKUP\n  watchdog: CPU 24 TB:997512652051031, last heartbeat TB:997504470175378 (15980ms ago)\n  ...\n  Supported: No, Unreleased kernel\n  CPU: 24 PID: 87504 Comm: drmgr Kdump: loaded Tainted: G            E  X    5.14.21-150400.71.1.bz196362_2-default #1 SLE15-SP4 (unreleased) 0d821077ef4faa8dfaf370efb5fdca1fa35f4e2c\n  NIP:  000000001fb41050 LR: 000000001fb4104c CTR: 0000000000000000\n  REGS: c00000000fc33d60 TRAP: 0100   Tainted: G            E  X     (5.14.21-150400.71.1.bz196362_2-default)\n  MSR:  8000000002981000 \u003CSF,VEC,VSX,ME>  CR: 48800002  XER: 20040020\n  CFAR: 000000000000011c IRQMASK: 1\n  GPR00: 0000000000000003 ffffffffffffffff 0000000000000001 00000000000050dc\n  GPR04: 000000001ffb6100 0000000000000020 0000000000000001 000000001fb09010\n  GPR08: 0000000020000000 0000000000000000 0000000000000000 0000000000000000\n  GPR12: 80040000072a40a8 c00000000ff8b680 0000000000000007 0000000000000034\n  GPR16: 000000001fbf6e94 000000001fbf6d84 000000001fbd1db0 000000001fb3f008\n  GPR20: 000000001fb41018 ffffffffffffffff 000000000000017f fffffffffffff68f\n  GPR24: 000000001fb18fe8 000000001fb3e000 000000001fb1adc0 000000001fb1cf40\n  GPR28: 000000001fb26000 000000001fb460f0 000000001fb17f18 000000001fb17000\n  NIP [000000001fb41050] 0x1fb41050\n  LR [000000001fb4104c] 0x1fb4104c\n  Call Trace:\n  Instruction dump:\n  XXXXXXXX XXXXXXXX XXXXXXXX XXXXXXXX XXXXXXXX XXXXXXXX XXXXXXXX XXXXXXXX\n  XXXXXXXX XXXXXXXX XXXXXXXX XXXXXXXX XXXXXXXX XXXXXXXX XXXXXXXX XXXXXXXX\n  Oops: Unrecoverable System Reset, sig: 6 [#1]\n  LE PAGE_SIZE=64K MMU=Hash SMP NR_CPUS=2048 NUMA pSeries\n  ...\n  Supported: No, Unreleased kernel\n  CPU: 24 PID: 87504 Comm: drmgr Kdump: loaded Tainted: G            E  X    5.14.21-150400.71.1.bz196362_2-default #1 SLE15-SP4 (unreleased) 0d821077ef4faa8dfaf370efb5fdca1fa35f4e2c\n  NIP:  000000001fb41050 LR: 000000001fb4104c CTR: 0000000000000000\n  REGS: c00000000fc33d60 TRAP: 0100   Tainted: G            E  X     (5.14.21-150400.71.1.bz196362_2-default)\n  MSR:  8000000002981000 \u003CSF,VEC,VSX,ME>  CR: 48800002  XER: 20040020\n  CFAR: 000000000000011c IRQMASK: 1\n  GPR00: 0000000000000003 ffffffffffffffff 0000000000000001 00000000000050dc\n  GPR04: 000000001ffb6100 0000000000000020 0000000000000001 000000001fb09010\n  GPR08: 0000000020000000 0000000000000000 0000000000000000 0000000000000000\n  GPR12: 80040000072a40a8 c00000000ff8b680 0000000000000007 0000000000000034\n  GPR16: 000000001fbf6e94 000000001fbf6d84 000000001fbd1db0 000000001fb3f008\n  GPR20: 000000001fb41018 ffffffffffffffff 000000000000017f fffffffffffff68f\n  GPR24: 000000001fb18fe8 000000001fb3e000 000000001fb1adc0 000000001fb1cf40\n  GPR28: 000000001fb26000 000000001fb460f0 000000001fb17f18 000000001fb17000\n  NIP [000000001fb41050] 0x1fb41050\n  LR [000000001fb4104c] 0x1fb4104c\n  Call Trace:\n  Instruction dump:\n  XXXXXXXX XXXXXXXX XXXXXXXX XXXXXXXX XXXXXXXX XXXXXXXX XXXXXXXX XXXXXXXX\n  XXXXXXXX XXXXXXXX XXXXXXXX XXXXXXXX XXXXXXXX XXXXXXXX XXXXXXXX XXXXXXXX\n  ---[ end trace 3ddec07f638c34a2 ]---\n\nThis happens because MSR[RI] is unset when entering RTAS but there is no\nvalid reason to not set it here.\n\nRTAS is expected to be called with MSR[RI] as specified in PAPR+ section\n\"7.2.1 Machine State\":\n\n  R1–7.2.1–9. If called with MSR[RI] equal to 1, then RTAS must protect\n  its own critical regions from recursion by setting the MSR[RI] bit to\n  0 when in the critical regions.\n\nFixing this by reviewing the way MSR is compute before calling RTAS. Now a\nhardcoded value meaning real \n---truncated---",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":9,"likelihood_of_exploit":9,"capec":17},"NVD-CWE-NOINFO","Insufficient Information","NVD uses this CWE ID when there is insufficient information to assign a specific CWE.","placeholder","NVD-Reserved",[],[],[],[],[22,24,26,28,30,32,34,36],{"_key":23},"SUSE-SU-2025:1027-1",{"_key":25},"SUSE-SU-2025:1176-1",{"_key":27},"SUSE-SU-2025:1183-1",{"_key":29},"SUSE-SU-2025:1241-1",{"_key":31},"RHSA-2023:0512",{"_key":33},"RHSA-2022:8267",{"_key":35},"DEBIAN-CVE-2022-49440",{"_key":37},"UBUNTU-CVE-2022-49440",[],[40,41,42,43],{"_key":23},{"_key":25},{"_key":27},{"_key":29},"2025-02-26T02:12:53.988Z","2026-05-11T18:59:51.690Z","Analyzed",{"cisa_kev":48,"cisa_ransomware":48,"cisa_vendor":9,"epss_severity":49,"epss_score":50,"severity":51,"severity_score":52,"severity_version":53,"severity_source":54,"severity_vector":55,"severity_status":46},false,"low",0.00125,"medium",5.5,"v3.1","nvd","CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",[57,63,67,71],{"url":58,"sources":59,"tags":61},"https://git.kernel.org/stable/c/5ca40fcf0da0ce2b5bc44e7d8b036535955f2e3d",[60,54],"cve.org",[62],"Patch",{"url":64,"sources":65,"tags":66},"https://git.kernel.org/stable/c/5f4367448f6817c8a0e94dc9736ed84fa8eee4a3",[60,54],[62],{"url":68,"sources":69,"tags":70},"https://git.kernel.org/stable/c/c9c41f0273826a13ac93124e66a4ff45df281ba0",[60,54],[62],{"url":72,"sources":73,"tags":74},"https://git.kernel.org/stable/c/b6b1c3ce06ca438eb24e0f45bf0e63ecad0369f5",[60,54],[62],[],{"date":77,"score":50,"percentile":78},"2026-06-03",0.3125,[80,84,87,90,93,96,99,102,105,109,112,115,118,121,124,127,130,133,136,140,143,146,149,152,155,158,161,164,167,170,173,175,178,181,183,186,189,192,195,198,201,204,207,210,213,216,219,222,225,228,232,235,238,241,245,248,251,253,256,259,262,266,269,272,275,278,281,284,287,289,292,295,298,301,304,307,310,313,316,319,322,325,328,331,334,337,340,343,346,349],{"date":81,"score":82,"percentile":83},"2025-11-04",0.00044,0.1302,{"date":85,"score":82,"percentile":86},"2025-11-05",0.13048,{"date":88,"score":82,"percentile":89},"2025-11-06",0.13137,{"date":91,"score":82,"percentile":92},"2025-11-07",0.13151,{"date":94,"score":82,"percentile":95},"2025-11-08",0.13152,{"date":97,"score":82,"percentile":98},"2025-11-09",0.13125,{"date":100,"score":82,"percentile":101},"2025-11-10",0.13093,{"date":103,"score":82,"percentile":104},"2025-11-11",0.1311,{"date":106,"score":107,"percentile":108},"2025-11-12",0.00046,0.14057,{"date":110,"score":107,"percentile":111},"2025-11-13",0.14082,{"date":113,"score":107,"percentile":114},"2025-11-14",0.1411,{"date":116,"score":107,"percentile":117},"2025-11-15",0.14075,{"date":119,"score":107,"percentile":120},"2025-11-16",0.14071,{"date":122,"score":107,"percentile":123},"2025-11-17",0.14042,{"date":125,"score":107,"percentile":126},"2025-11-18",0.09496,{"date":128,"score":107,"percentile":129},"2025-11-19",0.09509,{"date":131,"score":107,"percentile":132},"2025-11-20",0.09529,{"date":134,"score":107,"percentile":135},"2025-11-21",0.14069,{"date":137,"score":138,"percentile":139},"2025-11-22",0.00052,0.15946,{"date":141,"score":138,"percentile":142},"2025-11-23",0.15922,{"date":144,"score":138,"percentile":145},"2025-11-24",0.15885,{"date":147,"score":138,"percentile":148},"2025-11-25",0.1588,{"date":150,"score":138,"percentile":151},"2025-11-26",0.15866,{"date":153,"score":138,"percentile":154},"2025-11-27",0.15876,{"date":156,"score":138,"percentile":157},"2025-11-28",0.1586,{"date":159,"score":138,"percentile":160},"2025-11-29",0.15837,{"date":162,"score":138,"percentile":163},"2025-11-30",0.15845,{"date":165,"score":138,"percentile":166},"2025-12-01",0.15877,{"date":168,"score":138,"percentile":169},"2025-12-02",0.15887,{"date":171,"score":138,"percentile":172},"2025-12-03",0.1591,{"date":174,"score":138,"percentile":145},"2025-12-04",{"date":176,"score":138,"percentile":177},"2025-12-05",0.15953,{"date":179,"score":138,"percentile":180},"2025-12-06",0.15964,{"date":182,"score":138,"percentile":139},"2025-12-07",{"date":184,"score":138,"percentile":185},"2025-12-08",0.1596,{"date":187,"score":138,"percentile":188},"2025-12-09",0.16016,{"date":190,"score":138,"percentile":191},"2025-12-10",0.16078,{"date":193,"score":138,"percentile":194},"2025-12-11",0.1612,{"date":196,"score":138,"percentile":197},"2025-12-12",0.16169,{"date":199,"score":138,"percentile":200},"2025-12-13",0.16196,{"date":202,"score":138,"percentile":203},"2025-12-14",0.16159,{"date":205,"score":138,"percentile":206},"2025-12-15",0.16126,{"date":208,"score":138,"percentile":209},"2025-12-16",0.16138,{"date":211,"score":138,"percentile":212},"2025-12-17",0.16231,{"date":214,"score":138,"percentile":215},"2025-12-18",0.16289,{"date":217,"score":138,"percentile":218},"2025-12-19",0.16338,{"date":220,"score":138,"percentile":221},"2025-12-20",0.16317,{"date":223,"score":138,"percentile":224},"2025-12-21",0.1628,{"date":226,"score":138,"percentile":227},"2025-12-22",0.16222,{"date":229,"score":230,"percentile":231},"2025-12-23",0.00054,0.17207,{"date":233,"score":230,"percentile":234},"2025-12-24",0.17233,{"date":236,"score":230,"percentile":237},"2025-12-25",0.17311,{"date":239,"score":230,"percentile":240},"2025-12-26",0.17297,{"date":242,"score":243,"percentile":244},"2025-12-27",0.00068,0.21228,{"date":246,"score":230,"percentile":247},"2025-12-28",0.17252,{"date":249,"score":230,"percentile":250},"2025-12-29",0.17219,{"date":252,"score":230,"percentile":234},"2025-12-30",{"date":254,"score":230,"percentile":255},"2025-12-31",0.17304,{"date":257,"score":230,"percentile":258},"2026-01-01",0.174,{"date":260,"score":230,"percentile":261},"2026-01-02",0.17388,{"date":263,"score":264,"percentile":265},"2026-01-03",0.00029,0.07848,{"date":267,"score":264,"percentile":268},"2026-01-04",0.07779,{"date":270,"score":264,"percentile":271},"2026-01-05",0.07728,{"date":273,"score":264,"percentile":274},"2026-01-06",0.07715,{"date":276,"score":264,"percentile":277},"2026-01-07",0.07749,{"date":279,"score":264,"percentile":280},"2026-01-08",0.07825,{"date":282,"score":264,"percentile":283},"2026-01-09",0.07841,{"date":285,"score":264,"percentile":286},"2026-01-10",0.07862,{"date":288,"score":264,"percentile":265},"2026-01-11",{"date":290,"score":264,"percentile":291},"2026-01-12",0.07823,{"date":293,"score":264,"percentile":294},"2026-01-13",0.07795,{"date":296,"score":264,"percentile":297},"2026-01-14",0.07822,{"date":299,"score":264,"percentile":300},"2026-01-15",0.07821,{"date":302,"score":264,"percentile":303},"2026-01-16",0.07842,{"date":305,"score":264,"percentile":306},"2026-01-17",0.07853,{"date":308,"score":264,"percentile":309},"2026-01-18",0.07834,{"date":311,"score":264,"percentile":312},"2026-01-19",0.078,{"date":314,"score":264,"percentile":315},"2026-01-20",0.0776,{"date":317,"score":264,"percentile":318},"2026-01-21",0.07739,{"date":320,"score":264,"percentile":321},"2026-01-22",0.07733,{"date":323,"score":264,"percentile":324},"2026-01-23",0.07827,{"date":326,"score":264,"percentile":327},"2026-01-24",0.07875,{"date":329,"score":264,"percentile":330},"2026-01-25",0.07857,{"date":332,"score":264,"percentile":333},"2026-01-26",0.07819,{"date":335,"score":264,"percentile":336},"2026-01-27",0.0781,{"date":338,"score":264,"percentile":339},"2026-01-28",0.07774,{"date":341,"score":264,"percentile":342},"2026-01-29",0.07752,{"date":344,"score":264,"percentile":345},"2026-01-30",0.07763,{"date":347,"score":264,"percentile":348},"2026-01-31",0.07783,{"date":350,"score":264,"percentile":336},"2026-02-01",[352],{"source":54,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":353,"cvss_v4_0":9},{"baseScore":52,"baseSeverity":354,"vectorString":55,"impactScore":355,"exploitabilityScore":356},"MEDIUM",6,4.6,[358,381],{"ecosystem":9,"name":359,"vendor":360,"product":360,"cpe_part":361,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":362},"Linux","linux","a",[363,370,373,376,379],{"version":364,"is_range":365,"range_type":60,"version_start":366,"version_start_type":367,"version_end":368,"version_end_type":369,"fixed_in":9},">= 44c9f3cc1a07503b653b571eac5792436da39a30, \u003C 5ca40fcf0da0ce2b5bc44e7d8b036535955f2e3d",true,"44c9f3cc1a07503b653b571eac5792436da39a30","including","5ca40fcf0da0ce2b5bc44e7d8b036535955f2e3d","excluding",{"version":371,"is_range":365,"range_type":60,"version_start":366,"version_start_type":367,"version_end":372,"version_end_type":369,"fixed_in":9},">= 44c9f3cc1a07503b653b571eac5792436da39a30, \u003C 5f4367448f6817c8a0e94dc9736ed84fa8eee4a3","5f4367448f6817c8a0e94dc9736ed84fa8eee4a3",{"version":374,"is_range":365,"range_type":60,"version_start":366,"version_start_type":367,"version_end":375,"version_end_type":369,"fixed_in":9},">= 44c9f3cc1a07503b653b571eac5792436da39a30, \u003C c9c41f0273826a13ac93124e66a4ff45df281ba0","c9c41f0273826a13ac93124e66a4ff45df281ba0",{"version":377,"is_range":365,"range_type":60,"version_start":366,"version_start_type":367,"version_end":378,"version_end_type":369,"fixed_in":9},">= 44c9f3cc1a07503b653b571eac5792436da39a30, \u003C b6b1c3ce06ca438eb24e0f45bf0e63ecad0369f5","b6b1c3ce06ca438eb24e0f45bf0e63ecad0369f5",{"version":380,"is_range":48,"range_type":60,"version_start":380,"version_start_type":367,"version_end":380,"version_end_type":367,"fixed_in":9},"2.6.34",{"ecosystem":9,"name":382,"vendor":360,"product":383,"cpe_part":384,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":385},"linux kernel","linux_kernel","o",[386,390,394],{"version":387,"is_range":365,"range_type":388,"version_start":9,"version_start_type":9,"version_end":389,"version_end_type":369,"fixed_in":9},"lt5.15.46","cpe","5.15.46",{"version":391,"is_range":365,"range_type":388,"version_start":392,"version_start_type":367,"version_end":393,"version_end_type":369,"fixed_in":9},"gte5.16_lt5.17.14","5.16","5.17.14",{"version":395,"is_range":365,"range_type":388,"version_start":396,"version_start_type":367,"version_end":397,"version_end_type":369,"fixed_in":9},"gte5.18_lt5.18.3","5.18","5.18.3"]