CVE-2022-50579Improper Check for Unusual or Exceptional Conditions in Linux

CWE-754Improper Check for Unusual or Exceptional Conditions6 documents5 sources
Severity
4.4MEDIUM
No vector
EPSS
0.0%
top 91.72%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
LinuxLinux KernelDebian Linux
Timeline
PublishedOct 22

Description

In the Linux kernel, the following vulnerability has been resolved: arm64: ftrace: fix module PLTs with mcount Li Huafei reports that mcount-based ftrace with module PLTs was broken by commit: a6253579977e4c6f ("arm64: ftrace: consistently handle PLTs.") When a module PLTs are used and a module is loaded sufficiently far away from the kernel, we'll create PLTs for any branches which are out-of-range. These are separate from the special ftrace trampoline PLTs, which the module PLT code doesn'

Affected Packages4 packages

Linuxlinux/linux_kernel5.11.05.15.75+3
Debianlinux/linux_kernel< 5.10.158-1+3
CVEListV5linux/linuxbc28fde90937a920f7714ec4408269cac744f796657de36c72f57fa172a66b06f826b3f5bc56f42e+6
debiandebian/linux< linux 6.0.3-1 (bookworm)

🔴Vulnerability Details

3
OSV
CVE-2022-50579: In the Linux kernel, the following vulnerability has been resolved: arm64: ftrace: fix module PLTs with mcount Li Huafei reports that mcount-based ftr2025-10-22
GHSA
GHSA-g367-xgmw-wp3r: In the Linux kernel, the following vulnerability has been resolved: arm64: ftrace: fix module PLTs with mcount Li Huafei reports that mcount-based f2025-10-22
OSV
arm64: ftrace: fix module PLTs with mcount2025-10-22

📋Vendor Advisories

2
Red Hat
kernel: arm64: ftrace: fix module PLTs with mcount2025-10-22
Debian
CVE-2022-50579: linux - In the Linux kernel, the following vulnerability has been resolved: arm64: ftra...2022