Ubuntu: (CVE-2022-49299): linux vulnerability
Description
In the Linux kernel, the following vulnerability has been resolved: usb: dwc2: gadget: don't reset gadget's driver->bus UDC driver should not touch gadget's driver internals, especially it should not reset driver->bus. This wasn't harmful so far, but since commit fc274c1e9973 ("USB: gadget: Add a new bus for gadgets") gadget subsystem got it's own bus and messing with ->bus triggers the following NULL pointer dereference: dwc2 12480000.hsotg: bound driver g_ether 8<--- cut here --- Unable to handle kernel NULL pointer dereference at virtual address 00000000 [00000000] *pgd=00000000 Internal error: Oops: 5 [#1] SMP ARM Modules linked in: ... CPU: 0 PID: 620 Comm: modprobe Not tainted 5.18.0-rc5-next-20220504 #11862 Hardware name: Samsung Exynos (Flattened Device Tree) PC is at module_add_driver+0x44/0xe8 LR is at sysfs_do_create_link_sd+0x84/0xe0 ... Process modprobe (pid: 620, stack limit = 0x(ptrval)) ... module_add_driver from bus_add_driver+0xf4/0x1e4 bus_add_driver from driver_register+0x78/0x10c driver_register from usb_gadget_register_driver_owner+0x40/0xb4 usb_gadget_register_driver_owner from do_one_initcall+0x44/0x1e0 do_one_initcall from do_init_module+0x44/0x1c8 do_init_module from load_module+0x19b8/0x1b9c load_module from sys_finit_module+0xdc/0xfc sys_finit_module from ret_fast_syscall+0x0/0x54 Exception stack(0xf1771fa8 to 0xf1771ff0) ... dwc2 12480000.hsotg: new device is high-speed ---[ end trace 0000000000000000 ]--- Fix this by removing driver->bus entry reset.
Solution(s)
- ubuntu-upgrade-linux
- ubuntu-upgrade-linux-aws
- ubuntu-upgrade-linux-aws-5-15
- ubuntu-upgrade-linux-aws-5-4
- ubuntu-upgrade-linux-aws-fips
- ubuntu-upgrade-linux-aws-hwe
- ubuntu-upgrade-linux-azure
- ubuntu-upgrade-linux-azure-4-15
- ubuntu-upgrade-linux-azure-5-15
- ubuntu-upgrade-linux-azure-5-4
- ubuntu-upgrade-linux-azure-fips
- ubuntu-upgrade-linux-bluefield
- ubuntu-upgrade-linux-fips
- ubuntu-upgrade-linux-gcp
- ubuntu-upgrade-linux-gcp-4-15
- ubuntu-upgrade-linux-gcp-5-15
- ubuntu-upgrade-linux-gcp-5-4
- ubuntu-upgrade-linux-gcp-fips
- ubuntu-upgrade-linux-gke
- ubuntu-upgrade-linux-gkeop
- ubuntu-upgrade-linux-hwe
- ubuntu-upgrade-linux-hwe-5-15
- ubuntu-upgrade-linux-hwe-5-4
- ubuntu-upgrade-linux-ibm
- ubuntu-upgrade-linux-ibm-5-4
- ubuntu-upgrade-linux-intel-iotg
- ubuntu-upgrade-linux-intel-iotg-5-15
- ubuntu-upgrade-linux-iot
- ubuntu-upgrade-linux-kvm
- ubuntu-upgrade-linux-lowlatency
- ubuntu-upgrade-linux-lowlatency-hwe-5-15
- ubuntu-upgrade-linux-nvidia
- ubuntu-upgrade-linux-oracle
- ubuntu-upgrade-linux-oracle-5-15
- ubuntu-upgrade-linux-oracle-5-4
- ubuntu-upgrade-linux-raspi
- ubuntu-upgrade-linux-raspi-5-4
- ubuntu-upgrade-linux-realtime
- ubuntu-upgrade-linux-riscv-5-15
- Lightweight Endpoint Agent
- Live Dashboards
- Real Risk Prioritization
- IT-Integrated Remediation Projects
- Cloud, Virtual, and Container Assessment
- Integrated Threat Feeds
- Easy-to-Use RESTful API
- Automation-Assisted Patching
- Automated Containment
With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.
– Scott Cheney, Manager of Information Security, Sierra View Medical Center