CVE-2022-50271
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
15/09/2025
Last modified:
15/09/2025
Description
In the Linux kernel, the following vulnerability has been resolved:<br />
<br />
vhost/vsock: Use kvmalloc/kvfree for larger packets.<br />
<br />
When copying a large file over sftp over vsock, data size is usually 32kB,<br />
and kmalloc seems to fail to try to allocate 32 32kB regions.<br />
<br />
vhost-5837: page allocation failure: order:4, mode:0x24040c0<br />
Call Trace:<br />
[] dump_stack+0x97/0xdb<br />
[] warn_alloc_failed+0x10f/0x138<br />
[] ? __alloc_pages_direct_compact+0x38/0xc8<br />
[] __alloc_pages_nodemask+0x84c/0x90d<br />
[] alloc_kmem_pages+0x17/0x19<br />
[] kmalloc_order_trace+0x2b/0xdb<br />
[] __kmalloc+0x177/0x1f7<br />
[] ? copy_from_iter+0x8d/0x31d<br />
[] vhost_vsock_handle_tx_kick+0x1fa/0x301 [vhost_vsock]<br />
[] vhost_worker+0xf7/0x157 [vhost]<br />
[] kthread+0xfd/0x105<br />
[] ? vhost_dev_set_owner+0x22e/0x22e [vhost]<br />
[] ? flush_kthread_worker+0xf3/0xf3<br />
[] ret_from_fork+0x4e/0x80<br />
[] ? flush_kthread_worker+0xf3/0xf3<br />
<br />
Work around by doing kvmalloc instead.
Impact
References to Advisories, Solutions, and Tools
- https://git.kernel.org/stable/c/0d720c3f0a03e97867deab7e480ba3d3e19837ba
- https://git.kernel.org/stable/c/0e3f72931fc47bb81686020cc643cde5d9cd0bb8
- https://git.kernel.org/stable/c/36c9f340c60413e28f980c0224c4e9d35851526b
- https://git.kernel.org/stable/c/7aac8c63f604e6a6a46560c0f0188cd0332cf320
- https://git.kernel.org/stable/c/a99fc6d818161d6f1ff3307de8bf5237f6cc34d8
- https://git.kernel.org/stable/c/b4a5905fd2ef841cd61e969ea692c213c2e5c1f7
- https://git.kernel.org/stable/c/e28a4e7f0296824c61a81e7fd54ab48bad3e75ad
- https://git.kernel.org/stable/c/e6d0152c95108651f1880c1ddfab47cb9e3e62d0