[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2022-49767":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T08:53:30.047Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":18,"aliases":19,"duplicate_of":9,"upstream":20,"downstream":21,"duplicates":38,"related":39,"reserved_at":9,"published_at":46,"modified_at":47,"state":48,"summary":49,"references_raw":58,"kevs":93,"epss":94,"epss_history":97,"metrics":363,"affected":369},"CVE-2022-49767","In the Linux kernel, the following vulnerability has been resolved:\n\n9p/trans_fd: always use O_NONBLOCK read/write\n\nsyzbot is reporting hung task at p9_fd_close() [1], for p9_mux_poll_stop()\n from p9_conn_destroy() from p9_fd_close() is failing to interrupt already\nstarted kernel_read() from p9_fd_read() from p9_read_work() and/or\nkernel_write() from p9_fd_write() from p9_write_work() requests.\n\nSince p9_socket_open() sets O_NONBLOCK flag, p9_mux_poll_stop() does not\nneed to interrupt kernel_read()/kernel_write(). However, since p9_fd_open()\ndoes not set O_NONBLOCK flag, but pipe blocks unless signal is pending,\np9_mux_poll_stop() needs to interrupt kernel_read()/kernel_write() when\nthe file descriptor refers to a pipe. In other words, pipe file descriptor\nneeds to be handled as if socket file descriptor.\n\nWe somehow need to interrupt kernel_read()/kernel_write() on pipes.\n\nA minimal change, which this patch is doing, is to set O_NONBLOCK flag\n from p9_fd_open(), for O_NONBLOCK flag does not affect reading/writing\nof regular files. But this approach changes O_NONBLOCK flag on userspace-\nsupplied file descriptors (which might break userspace programs), and\nO_NONBLOCK flag could be changed by userspace. It would be possible to set\nO_NONBLOCK flag every time p9_fd_read()/p9_fd_write() is invoked, but still\nremains small race window for clearing O_NONBLOCK flag.\n\nIf we don't want to manipulate O_NONBLOCK flag, we might be able to\nsurround kernel_read()/kernel_write() with set_thread_flag(TIF_SIGPENDING)\nand recalc_sigpending(). Since p9_read_work()/p9_write_work() works are\nprocessed by kernel threads which process global system_wq workqueue,\nsignals could not be delivered from remote threads when p9_mux_poll_stop()\n from p9_conn_destroy() from p9_fd_close() is called. Therefore, calling\nset_thread_flag(TIF_SIGPENDING)/recalc_sigpending() every time would be\nneeded if we count on signals for making kernel_read()/kernel_write()\nnon-blocking.\n\n[Dominique: add comment at Christian's suggestion]",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":9,"likelihood_of_exploit":9,"capec":17},"NVD-CWE-NOINFO","Insufficient Information","NVD uses this CWE ID when there is insufficient information to assign a specific CWE.","placeholder","NVD-Reserved",[],[],[],[],[22,24,26,28,30,32,34,36],{"_key":23},"SUSE-SU-2025:01918-1",{"_key":25},"SUSE-SU-2025:01982-1",{"_key":27},"SUSE-SU-2025:02262-1",{"_key":29},"SUSE-SU-2025:01620-1",{"_key":31},"SUSE-SU-2025:01640-1",{"_key":33},"SUSE-SU-2025:01995-1",{"_key":35},"DEBIAN-CVE-2022-49767",{"_key":37},"UBUNTU-CVE-2022-49767",[],[40,41,42,43,44,45],{"_key":23},{"_key":25},{"_key":27},{"_key":29},{"_key":31},{"_key":33},"2025-05-01T14:09:06.183Z","2026-05-11T19:06:23.271Z","Analyzed",{"cisa_kev":50,"cisa_ransomware":50,"cisa_vendor":9,"epss_severity":51,"epss_score":52,"severity":53,"severity_score":54,"severity_version":55,"severity_source":56,"severity_vector":57,"severity_status":48},false,"low",0.00051,"medium",5.5,"v3.1","nvd","CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",[59,65,69,73,77,81,85,89],{"url":60,"sources":61,"tags":63},"https://git.kernel.org/stable/c/0b5e6bd72b8171364616841603a70e4ba9837063",[62,56],"cve.org",[64],"Patch",{"url":66,"sources":67,"tags":68},"https://git.kernel.org/stable/c/9f8554615df668e4bf83294633ee9d232b28ce45",[62,56],[64],{"url":70,"sources":71,"tags":72},"https://git.kernel.org/stable/c/7abf40f06a76c0dff42eada10597917e9776fbd4",[62,56],[64],{"url":74,"sources":75,"tags":76},"https://git.kernel.org/stable/c/b1ad04da7fe4515e2ce2d5f2dcab3b5b6d45614b",[62,56],[64],{"url":78,"sources":79,"tags":80},"https://git.kernel.org/stable/c/a8e2fc8f7b41fa9d9ca5f624f4e4d34fce5b40a9",[62,56],[64],{"url":82,"sources":83,"tags":84},"https://git.kernel.org/stable/c/0e07032b4b4724b8ad1003698cb81083c1818999",[62,56],[64],{"url":86,"sources":87,"tags":88},"https://git.kernel.org/stable/c/5af16182c5639349415118e9e9aecd8355f7a08b",[62,56],[64],{"url":90,"sources":91,"tags":92},"https://git.kernel.org/stable/c/ef575281b21e9a34dfae544a187c6aac2ae424a9",[62,56],[64],[],{"date":95,"score":52,"percentile":96},"2026-06-03",0.16097,[98,102,105,108,112,115,117,120,123,126,129,132,135,138,141,145,148,151,154,157,160,163,167,170,173,176,179,181,184,187,190,193,196,199,202,205,208,212,215,218,221,224,227,229,232,235,237,239,241,244,246,249,252,255,258,261,264,267,269,272,274,277,280,283,285,288,291,294,297,300,303,306,308,311,314,317,321,324,327,330,333,336,339,343,346,349,352,355,357,360],{"date":99,"score":100,"percentile":101},"2025-11-04",0.0004,0.11679,{"date":103,"score":100,"percentile":104},"2025-11-05",0.1171,{"date":106,"score":100,"percentile":107},"2025-11-06",0.11815,{"date":109,"score":110,"percentile":111},"2025-11-07",0.00015,0.02051,{"date":113,"score":110,"percentile":114},"2025-11-08",0.02057,{"date":116,"score":110,"percentile":114},"2025-11-09",{"date":118,"score":110,"percentile":119},"2025-11-10",0.02042,{"date":121,"score":110,"percentile":122},"2025-11-11",0.0206,{"date":124,"score":110,"percentile":125},"2025-11-12",0.02071,{"date":127,"score":110,"percentile":128},"2025-11-13",0.02096,{"date":130,"score":110,"percentile":131},"2025-11-14",0.02108,{"date":133,"score":110,"percentile":134},"2025-11-15",0.02129,{"date":136,"score":110,"percentile":137},"2025-11-16",0.02131,{"date":139,"score":110,"percentile":140},"2025-11-17",0.02118,{"date":142,"score":143,"percentile":144},"2025-11-18",0.00031,0.0465,{"date":146,"score":143,"percentile":147},"2025-11-19",0.04691,{"date":149,"score":143,"percentile":150},"2025-11-20",0.04749,{"date":152,"score":110,"percentile":153},"2025-11-21",0.02177,{"date":155,"score":110,"percentile":156},"2025-11-22",0.02178,{"date":158,"score":110,"percentile":159},"2025-11-23",0.02175,{"date":161,"score":110,"percentile":162},"2025-11-24",0.02163,{"date":164,"score":165,"percentile":166},"2025-11-25",0.00017,0.03082,{"date":168,"score":165,"percentile":169},"2025-11-26",0.0307,{"date":171,"score":165,"percentile":172},"2025-11-27",0.03072,{"date":174,"score":165,"percentile":175},"2025-11-28",0.03074,{"date":177,"score":165,"percentile":178},"2025-11-29",0.03122,{"date":180,"score":165,"percentile":178},"2025-11-30",{"date":182,"score":165,"percentile":183},"2025-12-01",0.03195,{"date":185,"score":165,"percentile":186},"2025-12-02",0.03194,{"date":188,"score":165,"percentile":189},"2025-12-03",0.03196,{"date":191,"score":165,"percentile":192},"2025-12-04",0.03128,{"date":194,"score":165,"percentile":195},"2025-12-05",0.03156,{"date":197,"score":165,"percentile":198},"2025-12-06",0.03174,{"date":200,"score":165,"percentile":201},"2025-12-07",0.0318,{"date":203,"score":165,"percentile":204},"2025-12-08",0.03182,{"date":206,"score":165,"percentile":207},"2025-12-09",0.03211,{"date":209,"score":210,"percentile":211},"2025-12-10",0.00014,0.01794,{"date":213,"score":210,"percentile":214},"2025-12-11",0.01785,{"date":216,"score":210,"percentile":217},"2025-12-12",0.01793,{"date":219,"score":210,"percentile":220},"2025-12-13",0.01777,{"date":222,"score":210,"percentile":223},"2025-12-14",0.01776,{"date":225,"score":210,"percentile":226},"2025-12-15",0.01769,{"date":228,"score":210,"percentile":226},"2025-12-16",{"date":230,"score":210,"percentile":231},"2025-12-17",0.01782,{"date":233,"score":210,"percentile":234},"2025-12-18",0.01775,{"date":236,"score":210,"percentile":223},"2025-12-19",{"date":238,"score":210,"percentile":234},"2025-12-20",{"date":240,"score":210,"percentile":231},"2025-12-21",{"date":242,"score":210,"percentile":243},"2025-12-22",0.01784,{"date":245,"score":210,"percentile":214},"2025-12-23",{"date":247,"score":210,"percentile":248},"2025-12-24",0.01792,{"date":250,"score":210,"percentile":251},"2025-12-25",0.01798,{"date":253,"score":210,"percentile":254},"2025-12-26",0.01801,{"date":256,"score":165,"percentile":257},"2025-12-27",0.03259,{"date":259,"score":210,"percentile":260},"2025-12-28",0.01797,{"date":262,"score":210,"percentile":263},"2025-12-29",0.01789,{"date":265,"score":210,"percentile":266},"2025-12-30",0.01786,{"date":268,"score":210,"percentile":243},"2025-12-31",{"date":270,"score":210,"percentile":271},"2026-01-01",0.01805,{"date":273,"score":210,"percentile":254},"2026-01-02",{"date":275,"score":210,"percentile":276},"2026-01-03",0.01803,{"date":278,"score":210,"percentile":279},"2026-01-04",0.0186,{"date":281,"score":210,"percentile":282},"2026-01-05",0.01863,{"date":284,"score":210,"percentile":279},"2026-01-06",{"date":286,"score":210,"percentile":287},"2026-01-07",0.01876,{"date":289,"score":210,"percentile":290},"2026-01-08",0.01892,{"date":292,"score":210,"percentile":293},"2026-01-09",0.01911,{"date":295,"score":210,"percentile":296},"2026-01-10",0.01925,{"date":298,"score":210,"percentile":299},"2026-01-11",0.01914,{"date":301,"score":210,"percentile":302},"2026-01-12",0.01912,{"date":304,"score":210,"percentile":305},"2026-01-13",0.01904,{"date":307,"score":210,"percentile":302},"2026-01-14",{"date":309,"score":165,"percentile":310},"2026-01-15",0.03272,{"date":312,"score":165,"percentile":313},"2026-01-16",0.03269,{"date":315,"score":165,"percentile":316},"2026-01-17",0.0327,{"date":318,"score":319,"percentile":320},"2026-01-18",0.00018,0.03564,{"date":322,"score":319,"percentile":323},"2026-01-19",0.03545,{"date":325,"score":165,"percentile":326},"2026-01-20",0.03235,{"date":328,"score":165,"percentile":329},"2026-01-21",0.03219,{"date":331,"score":165,"percentile":332},"2026-01-22",0.03223,{"date":334,"score":165,"percentile":335},"2026-01-23",0.03273,{"date":337,"score":165,"percentile":338},"2026-01-24",0.03298,{"date":340,"score":341,"percentile":342},"2026-01-25",0.00019,0.04096,{"date":344,"score":341,"percentile":345},"2026-01-26",0.04085,{"date":347,"score":341,"percentile":348},"2026-01-27",0.04073,{"date":350,"score":341,"percentile":351},"2026-01-28",0.04055,{"date":353,"score":341,"percentile":354},"2026-01-29",0.04071,{"date":356,"score":341,"percentile":348},"2026-01-30",{"date":358,"score":341,"percentile":359},"2026-01-31",0.04057,{"date":361,"score":341,"percentile":362},"2026-02-01",0.04164,[364],{"source":56,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":365,"cvss_v4_0":9},{"baseScore":54,"baseSeverity":366,"vectorString":57,"impactScore":367,"exploitabilityScore":368},"MEDIUM",6,4.6,[370,405],{"ecosystem":9,"name":371,"vendor":372,"product":372,"cpe_part":373,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":374},"Linux","linux","a",[375,382,385,388,391,394,397,400,403],{"version":376,"is_range":377,"range_type":62,"version_start":378,"version_start_type":379,"version_end":380,"version_end_type":381,"fixed_in":9},">= 27979bb2ff748613dba96ae66392a76fb0678527, \u003C 0b5e6bd72b8171364616841603a70e4ba9837063",true,"27979bb2ff748613dba96ae66392a76fb0678527","including","0b5e6bd72b8171364616841603a70e4ba9837063","excluding",{"version":383,"is_range":377,"range_type":62,"version_start":378,"version_start_type":379,"version_end":384,"version_end_type":381,"fixed_in":9},">= 27979bb2ff748613dba96ae66392a76fb0678527, \u003C 9f8554615df668e4bf83294633ee9d232b28ce45","9f8554615df668e4bf83294633ee9d232b28ce45",{"version":386,"is_range":377,"range_type":62,"version_start":378,"version_start_type":379,"version_end":387,"version_end_type":381,"fixed_in":9},">= 27979bb2ff748613dba96ae66392a76fb0678527, \u003C 7abf40f06a76c0dff42eada10597917e9776fbd4","7abf40f06a76c0dff42eada10597917e9776fbd4",{"version":389,"is_range":377,"range_type":62,"version_start":378,"version_start_type":379,"version_end":390,"version_end_type":381,"fixed_in":9},">= 27979bb2ff748613dba96ae66392a76fb0678527, \u003C b1ad04da7fe4515e2ce2d5f2dcab3b5b6d45614b","b1ad04da7fe4515e2ce2d5f2dcab3b5b6d45614b",{"version":392,"is_range":377,"range_type":62,"version_start":378,"version_start_type":379,"version_end":393,"version_end_type":381,"fixed_in":9},">= 27979bb2ff748613dba96ae66392a76fb0678527, \u003C a8e2fc8f7b41fa9d9ca5f624f4e4d34fce5b40a9","a8e2fc8f7b41fa9d9ca5f624f4e4d34fce5b40a9",{"version":395,"is_range":377,"range_type":62,"version_start":378,"version_start_type":379,"version_end":396,"version_end_type":381,"fixed_in":9},">= 27979bb2ff748613dba96ae66392a76fb0678527, \u003C 0e07032b4b4724b8ad1003698cb81083c1818999","0e07032b4b4724b8ad1003698cb81083c1818999",{"version":398,"is_range":377,"range_type":62,"version_start":378,"version_start_type":379,"version_end":399,"version_end_type":381,"fixed_in":9},">= 27979bb2ff748613dba96ae66392a76fb0678527, \u003C 5af16182c5639349415118e9e9aecd8355f7a08b","5af16182c5639349415118e9e9aecd8355f7a08b",{"version":401,"is_range":377,"range_type":62,"version_start":378,"version_start_type":379,"version_end":402,"version_end_type":381,"fixed_in":9},">= 27979bb2ff748613dba96ae66392a76fb0678527, \u003C ef575281b21e9a34dfae544a187c6aac2ae424a9","ef575281b21e9a34dfae544a187c6aac2ae424a9",{"version":404,"is_range":50,"range_type":62,"version_start":404,"version_start_type":379,"version_end":404,"version_end_type":379,"fixed_in":9},"2.6.17",{"ecosystem":9,"name":406,"vendor":372,"product":407,"cpe_part":408,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":409},"linux kernel","linux_kernel","o",[410,414,418,422,426,430,434],{"version":411,"is_range":377,"range_type":412,"version_start":9,"version_start_type":9,"version_end":413,"version_end_type":381,"fixed_in":9},"lt4.9.334","cpe","4.9.334",{"version":415,"is_range":377,"range_type":412,"version_start":416,"version_start_type":379,"version_end":417,"version_end_type":381,"fixed_in":9},"gte4.10_lt4.14.300","4.10","4.14.300",{"version":419,"is_range":377,"range_type":412,"version_start":420,"version_start_type":379,"version_end":421,"version_end_type":381,"fixed_in":9},"gte4.15_lt4.19.267","4.15","4.19.267",{"version":423,"is_range":377,"range_type":412,"version_start":424,"version_start_type":379,"version_end":425,"version_end_type":381,"fixed_in":9},"gte4.20_lt5.4.225","4.20","5.4.225",{"version":427,"is_range":377,"range_type":412,"version_start":428,"version_start_type":379,"version_end":429,"version_end_type":381,"fixed_in":9},"gte5.5_lt5.10.156","5.5","5.10.156",{"version":431,"is_range":377,"range_type":412,"version_start":432,"version_start_type":379,"version_end":433,"version_end_type":381,"fixed_in":9},"gte5.11_lt5.15.80","5.11","5.15.80",{"version":435,"is_range":377,"range_type":412,"version_start":436,"version_start_type":379,"version_end":437,"version_end_type":381,"fixed_in":9},"gte5.16_lt6.0.10","5.16","6.0.10"]