UBUNTU-CVE-2022-48742

Description

In the Linux kernel, the following vulnerability has been resolved: rtnetlink: make sure to refresh master_dev/m_ops in __rtnl_newlink() While looking at one unrelated syzbot bug, I found the replay logic in __rtnl_newlink() to potentially trigger use-after-free. It is better to clear master_dev and m_ops inside the loop, in case we have to replay it.

CVSS Metrics

• v3.1•HIGH•Score: 7.8CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected Systems

• ubuntu•linux

  all | < 4.15.0-176.185 | < 5.4.0-109.123

• ubuntu•linux-allwinner-5.19

  all

• ubuntu•linux-aws

  all | < 4.15.0-1127.136 | < 5.4.0-1072.77

• ubuntu•linux-aws-5.0

  all

• ubuntu•linux-aws-5.11

  all

• ubuntu•linux-aws-5.13

  all

• ubuntu•linux-aws-5.19

  all

• ubuntu•linux-aws-5.3

  all

• ubuntu•linux-aws-5.4

  < 5.4.0-1072.77~18.04.1

• ubuntu•linux-aws-5.8

  all

• ubuntu•linux-aws-6.2

  all

• ubuntu•linux-aws-fips

  < 4.15.0-2066.69 | all | < 5.4.0-1072.77+fips1

• ubuntu•linux-aws-hwe

  < 4.15.0-1127.136~16.04.1

• ubuntu•linux-azure

  < 4.15.0-1137.150~14.04.1 | < 4.15.0-1137.150~16.04.1 | all | < 5.4.0-1077.80

• ubuntu•linux-azure-4.15

  < 4.15.0-1137.150

• ubuntu•linux-azure-5.11

  all

• ubuntu•linux-azure-5.13

  all

• ubuntu•linux-azure-5.19

  all

• ubuntu•linux-azure-5.3

  all

• ubuntu•linux-azure-5.4

  < 5.4.0-1077.80~18.04.1

• ubuntu•linux-azure-5.8

  all

• ubuntu•linux-azure-6.2

  all

• ubuntu•linux-azure-edge

  all

• ubuntu•linux-azure-fde

  all

• ubuntu•linux-azure-fde-5.19

  all

• ubuntu•linux-azure-fde-6.2

  all

• ubuntu•linux-azure-fips

  < 4.15.0-2048.52 | all | < 5.4.0-1076.79+fips1

• ubuntu•linux-bluefield

  < 5.4.0-1035.38 | all

• ubuntu•linux-fips

  all | < 4.15.0-1084.93 | < 5.4.0-1048.54

• ubuntu•linux-gcp

  < 4.15.0-1121.135~16.04.1 | all | < 5.4.0-1072.77

• ubuntu•linux-gcp-4.15

  < 4.15.0-1121.135

• ubuntu•linux-gcp-5.11

  all

• ubuntu•linux-gcp-5.13

  all

• ubuntu•linux-gcp-5.19

  all

• ubuntu•linux-gcp-5.3

  all

• ubuntu•linux-gcp-5.4

  < 5.4.0-1072.77~18.04.1

• ubuntu•linux-gcp-5.8

  all

• ubuntu•linux-gcp-6.2

  all

• ubuntu•linux-gcp-fips

  < 4.15.0-2031.34 | all | < 5.4.0-1071.75+fips1

• ubuntu•linux-gke

  all

• ubuntu•linux-gke-4.15

  all

• ubuntu•linux-gke-5.15

  all

• ubuntu•linux-gke-5.4

  all

• ubuntu•linux-gkeop

  < 5.4.0-1039.40

• ubuntu•linux-gkeop-5.4

  all

• ubuntu•linux-hwe

  < 4.15.0-176.185~16.04.1 | all

• ubuntu•linux-hwe-5.11

  all

• ubuntu•linux-hwe-5.13

  all

• ubuntu•linux-hwe-5.19

  all

• ubuntu•linux-hwe-5.4

  < 5.4.0-109.123~18.04.1

Showing first 50 affected entries in server-rendered view.

References (11)

• https://ubuntu.com/security/CVE-2022-48742
• https://www.cve.org/CVERecord?id=CVE-2022-48742
• https://git.kernel.org/linus/c6f6f2444bdbe0079e41914a35081530d0409963
• https://git.kernel.org/stable/c/2cf180360d66bd657e606c1217e0e668e6faa303
• https://git.kernel.org/stable/c/7d9211678c0f0624f74cdff36117ab8316697bb8
• https://git.kernel.org/stable/c/a01e60a1ec6bef9be471fb7182a33c6d6f124e93
• https://git.kernel.org/stable/c/bd43771ee9759dd9dfae946bff190e2c5a120de5
• https://git.kernel.org/stable/c/3bbe2019dd12b8d13671ee6cda055d49637b4c39
• https://git.kernel.org/stable/c/def5e7070079b2a214b3b1a2fbec623e6fbfe34a
• https://git.kernel.org/stable/c/36a9a0aee881940476b254e0352581401b23f210
• https://git.kernel.org/stable/c/c6f6f2444bdbe0079e41914a35081530d0409963