CVE-2022-50266 (GCVE-0-2022-50266)

Vulnerability from cvelistv5 – Published: 2025-09-15 14:21 – Updated: 2025-09-15 14:21
VLAI?
Title
kprobes: Fix check for probe enabled in kill_kprobe()
Summary
In the Linux kernel, the following vulnerability has been resolved: kprobes: Fix check for probe enabled in kill_kprobe() In kill_kprobe(), the check whether disarm_kprobe_ftrace() needs to be called always fails. This is because before that we set the KPROBE_FLAG_GONE flag for kprobe so that "!kprobe_disabled(p)" is always false. The disarm_kprobe_ftrace() call introduced by commit: 0cb2f1372baa ("kprobes: Fix NULL pointer dereference at kprobe_ftrace_handler") to fix the NULL pointer reference problem. When the probe is enabled, if we do not disarm it, this problem still exists. Fix it by putting the probe enabled check before setting the KPROBE_FLAG_GONE flag.
Severity ?
No CVSS data available.
Assigner
References
Impacted products
Vendor Product Version
Linux Linux Affected: 3031313eb3d549b7ad6f9fbcc52ba04412e3eb9e , < f20a067f13106565816b4b6a6b665b2088a63824 (git)
Affected: 3031313eb3d549b7ad6f9fbcc52ba04412e3eb9e , < c909985dd0c0f74b61e3f8f0e04bf8aa9c8b97c7 (git)
Affected: 3031313eb3d549b7ad6f9fbcc52ba04412e3eb9e , < 0c76ef3f26d5ef2ac2c21b47e7620cff35809fbb (git)
Affected: 3c5f8d371b7fef3e3714c4a062c7f3b4aa41d122 (git)
Affected: 9b55d84deec88c02b053a819acf08a6d471dda02 (git)
Affected: 2295608b44c91df767a5c68027f9c9e52ecb28e7 (git)
Affected: ce7ff920092130f249b75f9fe177edb3362fefe8 (git)
Affected: 3995f7a60feceba6c8f762f4aff3184f90a1291d (git)
Affected: 247c62ebdfae450bb76dd89cd4724df6be07df75 (git)
Create a notification for this product.
    Linux Linux Affected: 5.9
Unaffected: 0 , < 5.9 (semver)
Unaffected: 6.0.16 , ≤ 6.0.* (semver)
Unaffected: 6.1.2 , ≤ 6.1.* (semver)
Unaffected: 6.2 , ≤ * (original_commit_for_fix)
Create a notification for this product.
Show details on NVD website
To clipboard 

{
  "containers": {
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "kernel/kprobes.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "f20a067f13106565816b4b6a6b665b2088a63824",
              "status": "affected",
              "version": "3031313eb3d549b7ad6f9fbcc52ba04412e3eb9e",
              "versionType": "git"
            },
            {
              "lessThan": "c909985dd0c0f74b61e3f8f0e04bf8aa9c8b97c7",
              "status": "affected",
              "version": "3031313eb3d549b7ad6f9fbcc52ba04412e3eb9e",
              "versionType": "git"
            },
            {
              "lessThan": "0c76ef3f26d5ef2ac2c21b47e7620cff35809fbb",
              "status": "affected",
              "version": "3031313eb3d549b7ad6f9fbcc52ba04412e3eb9e",
              "versionType": "git"
            },
            {
              "status": "affected",
              "version": "3c5f8d371b7fef3e3714c4a062c7f3b4aa41d122",
              "versionType": "git"
            },
            {
              "status": "affected",
              "version": "9b55d84deec88c02b053a819acf08a6d471dda02",
              "versionType": "git"
            },
            {
              "status": "affected",
              "version": "2295608b44c91df767a5c68027f9c9e52ecb28e7",
              "versionType": "git"
            },
            {
              "status": "affected",
              "version": "ce7ff920092130f249b75f9fe177edb3362fefe8",
              "versionType": "git"
            },
            {
              "status": "affected",
              "version": "3995f7a60feceba6c8f762f4aff3184f90a1291d",
              "versionType": "git"
            },
            {
              "status": "affected",
              "version": "247c62ebdfae450bb76dd89cd4724df6be07df75",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "kernel/kprobes.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.9"
            },
            {
              "lessThan": "5.9",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.0.*",
              "status": "unaffected",
              "version": "6.0.16",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.2",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.2",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.0.16",
                  "versionStartIncluding": "5.9",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.2",
                  "versionStartIncluding": "5.9",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.2",
                  "versionStartIncluding": "5.9",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionStartIncluding": "4.4.238",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionStartIncluding": "4.9.238",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionStartIncluding": "4.14.200",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionStartIncluding": "4.19.149",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionStartIncluding": "5.4.69",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionStartIncluding": "5.8.13",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nkprobes: Fix check for probe enabled in kill_kprobe()\n\nIn kill_kprobe(), the check whether disarm_kprobe_ftrace() needs to be\ncalled always fails. This is because before that we set the\nKPROBE_FLAG_GONE flag for kprobe so that \"!kprobe_disabled(p)\" is always\nfalse.\n\nThe disarm_kprobe_ftrace() call introduced by commit:\n\n  0cb2f1372baa (\"kprobes: Fix NULL pointer dereference at kprobe_ftrace_handler\")\n\nto fix the NULL pointer reference problem. When the probe is enabled, if\nwe do not disarm it, this problem still exists.\n\nFix it by putting the probe enabled check before setting the\nKPROBE_FLAG_GONE flag."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-09-15T14:21:02.529Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/f20a067f13106565816b4b6a6b665b2088a63824"
        },
        {
          "url": "https://git.kernel.org/stable/c/c909985dd0c0f74b61e3f8f0e04bf8aa9c8b97c7"
        },
        {
          "url": "https://git.kernel.org/stable/c/0c76ef3f26d5ef2ac2c21b47e7620cff35809fbb"
        }
      ],
      "title": "kprobes: Fix check for probe enabled in kill_kprobe()",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2022-50266",
    "datePublished": "2025-09-15T14:21:02.529Z",
    "dateReserved": "2025-09-15T13:58:00.975Z",
    "dateUpdated": "2025-09-15T14:21:02.529Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.



Detection rules are retrieved from Rulezet.