CVE-2022-49339

In the Linux kernel, the following vulnerability has been resolved:<br /> <br /> net: ipv6: unexport __init-annotated seg6_hmac_init()<br /> <br /> EXPORT_SYMBOL and __init is a bad combination because the .init.text<br /> section is freed up after the initialization. Hence, modules cannot<br /> use symbols annotated __init. The access to a freed symbol may end up<br /> with kernel panic.<br /> <br /> modpost used to detect it, but it has been broken for a decade.<br /> <br /> Recently, I fixed modpost so it started to warn it again, then this<br /> showed up in linux-next builds.<br /> <br /> There are two ways to fix it:<br /> <br /> - Remove __init<br /> - Remove EXPORT_SYMBOL<br /> <br /> I chose the latter for this case because the caller (net/ipv6/seg6.c)<br /> and the callee (net/ipv6/seg6_hmac.c) belong to the same module.<br /> It seems an internal function call in ipv6.ko.