CVE-2022-49063

Summary

CVE-2022-49063 is a use-after-free vulnerability in the Linux kernel's arfs subsystem. Specifically, it affects the free\_irq\_cpu\_rmap function, which can lead to memory being accessed after it has been freed. This issue occurs when free\_irq\_cpu\_rmap is called after (devm)free\_irq, resulting in attempts to work with IRQ descs that have already been freed. The vulnerability can lead to system instability, and the impacted code is found in the ice driver. To mitigate this issue, ensure that rmap creation and freeing functions are symmetrical with (request,free)\_irq calls, and make these operations independent of the actual device aRFS configuration. Additionally, ice\_vsi\_free\_irq should only clear IRQ affinity notifiers when aRFS is disabled.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.