CVE-2022-49077

EUVD-2022-55127
In the Linux kernel, the following vulnerability has been resolved:

mmmremap.c: avoid pointless invalidate_range_start/end on mremap(old_size=0)

If an mremap() syscall with old_size=0 ends up in move_page_tables(), it
will call invalidate_range_start()/invalidate_range_end() unnecessarily,
i.e.  with an empty range.

This causes a WARN in KVM's mmu_notifier.  In the past, empty ranges
have been diagnosed to be off-by-one bugs, hence the WARNing.  Given the
low (so far) number of unique reports, the benefits of detecting more
buggy callers seem to outweigh the cost of having to fix cases such as
this one, where userspace is doing something silly.  In this particular
case, an early return from move_page_tables() is enough to fix the
issue.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.5 MEDIUM
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 14%
Affected Products (NVD)
VendorProductVersion
linuxlinux_kernel
𝑥
< 4.9.311
linuxlinux_kernel
4.10 ≤
𝑥
< 4.14.276
linuxlinux_kernel
4.15 ≤
𝑥
< 4.19.238
linuxlinux_kernel
4.20 ≤
𝑥
< 5.4.189
linuxlinux_kernel
5.5 ≤
𝑥
< 5.10.111
linuxlinux_kernel
5.11 ≤
𝑥
< 5.15.34
linuxlinux_kernel
5.16 ≤
𝑥
< 5.16.20
linuxlinux_kernel
5.17 ≤
𝑥
< 5.17.3
linuxlinux_kernel
5.18:rc1
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
linux
bookworm
6.1.123-1
fixed
bookworm (security)
6.1.128-1
fixed
bullseye
5.10.223-1
fixed
bullseye (security)
5.10.234-1
fixed
sid
6.12.16-1
fixed
trixie
6.12.12-1
fixed
Amazon Linux logo
Amazon Linux Releases
Amazon Package
Release
kernel
Amazon Linux 2
0:4.14.276-211.499.amzn2
fixed
kernel-debuginfo
Amazon Linux 2
0:4.14.276-211.499.amzn2
fixed
kernel-debuginfo-common-aarch64
Amazon Linux 2
0:4.14.276-211.499.amzn2
fixed
kernel-debuginfo-common-x86_64
Amazon Linux 2
0:4.14.276-211.499.amzn2
fixed
kernel-devel
Amazon Linux 2
0:4.14.276-211.499.amzn2
fixed
kernel-headers
Amazon Linux 2
0:4.14.276-211.499.amzn2
fixed
kernel-livepatch-4.14.276-211.499
Amazon Linux 2
0:1.0-0.amzn2
fixed
kernel-tools
Amazon Linux 2
0:4.14.276-211.499.amzn2
fixed
kernel-tools-debuginfo
Amazon Linux 2
0:4.14.276-211.499.amzn2
fixed
kernel-tools-devel
Amazon Linux 2
0:4.14.276-211.499.amzn2
fixed
perf
Amazon Linux 2
0:4.14.276-211.499.amzn2
fixed
perf-debuginfo
Amazon Linux 2
0:4.14.276-211.499.amzn2
fixed
python-perf
Amazon Linux 2
0:4.14.276-211.499.amzn2
fixed
python-perf-debuginfo
Amazon Linux 2
0:4.14.276-211.499.amzn2
fixed