CVE-2022-50430
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
01/10/2025
Last modified:
21/01/2026
Description
In the Linux kernel, the following vulnerability has been resolved:<br />
<br />
mmc: vub300: fix warning - do not call blocking ops when !TASK_RUNNING<br />
<br />
vub300_enable_sdio_irq() works with mutex and need TASK_RUNNING here.<br />
Ensure that we mark current as TASK_RUNNING for sleepable context.<br />
<br />
[ 77.554641] do not call blocking ops when !TASK_RUNNING; state=1 set at [] sdio_irq_thread+0x17d/0x5b0<br />
[ 77.554652] WARNING: CPU: 2 PID: 1983 at kernel/sched/core.c:9813 __might_sleep+0x116/0x160<br />
[ 77.554905] CPU: 2 PID: 1983 Comm: ksdioirqd/mmc1 Tainted: G OE 6.1.0-rc5 #1<br />
[ 77.554910] Hardware name: Intel(R) Client Systems NUC8i7BEH/NUC8BEB, BIOS BECFL357.86A.0081.2020.0504.1834 05/04/2020<br />
[ 77.554912] RIP: 0010:__might_sleep+0x116/0x160<br />
[ 77.554920] RSP: 0018:ffff888107b7fdb8 EFLAGS: 00010282<br />
[ 77.554923] RAX: 0000000000000000 RBX: ffff888118c1b740 RCX: 0000000000000000<br />
[ 77.554926] RDX: 0000000000000001 RSI: 0000000000000004 RDI: ffffed1020f6ffa9<br />
[ 77.554928] RBP: ffff888107b7fde0 R08: 0000000000000001 R09: ffffed1043ea60ba<br />
[ 77.554930] R10: ffff88821f5305cb R11: ffffed1043ea60b9 R12: ffffffff93aa3a60<br />
[ 77.554932] R13: 000000000000011b R14: 7fffffffffffffff R15: ffffffffc0558660<br />
[ 77.554934] FS: 0000000000000000(0000) GS:ffff88821f500000(0000) knlGS:0000000000000000<br />
[ 77.554937] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033<br />
[ 77.554939] CR2: 00007f8a44010d68 CR3: 000000024421a003 CR4: 00000000003706e0<br />
[ 77.554942] Call Trace:<br />
[ 77.554944] <br />
[ 77.554952] mutex_lock+0x78/0xf0<br />
[ 77.554973] vub300_enable_sdio_irq+0x103/0x3c0 [vub300]<br />
[ 77.554981] sdio_irq_thread+0x25c/0x5b0<br />
[ 77.555006] kthread+0x2b8/0x370<br />
[ 77.555017] ret_from_fork+0x1f/0x30<br />
[ 77.555023] <br />
[ 77.555025] ---[ end trace 0000000000000000 ]---
Impact
Base Score 3.x
5.50
Severity 3.x
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 3.0 (including) | 4.9.337 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 4.10 (including) | 4.14.303 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 4.15 (including) | 4.19.270 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 4.20 (including) | 5.4.229 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 5.5 (including) | 5.10.163 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 5.11 (including) | 5.15.87 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 5.16 (including) | 6.0.17 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 6.1 (including) | 6.1.3 (excluding) |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- https://git.kernel.org/stable/c/32d5af247d4de6a35769ca1d027480a37c28fd0c
- https://git.kernel.org/stable/c/48e91ae755f027d817ed7e51db9963ddb7081946
- https://git.kernel.org/stable/c/4a44cd249604e29e7b90ae796d7692f5773dd348
- https://git.kernel.org/stable/c/6f7258c6f66692b3760c37ddd4bc9e02bb290da7
- https://git.kernel.org/stable/c/b51d5fed9f53e07ce9fc65efb4ff1abe021a4c16
- https://git.kernel.org/stable/c/ba2e7d07dd06e646a72ba906a89fdc1cca7ea560
- https://git.kernel.org/stable/c/d15946ef98f4ccdca961b76f90d9b53c454d590e
- https://git.kernel.org/stable/c/d58289fc77f8c1f879c818bddaf7ef524c73658b
- https://git.kernel.org/stable/c/f1c08947ab0538b07a0bd9d6edadfb5185f56344