{"id":"CVE-2022-48714","summary":"bpf: Use VM_MAP instead of VM_ALLOC for ringbuf","details":"In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Use VM_MAP instead of VM_ALLOC for ringbuf\n\nAfter commit 2fd3fb0be1d1 (\"kasan, vmalloc: unpoison VM_ALLOC pages\nafter mapping\"), non-VM_ALLOC mappings will be marked as accessible\nin __get_vm_area_node() when KASAN is enabled. But now the flag for\nringbuf area is VM_ALLOC, so KASAN will complain out-of-bound access\nafter vmap() returns. Because the ringbuf area is created by mapping\nallocated pages, so use VM_MAP instead.\n\nAfter the change, info in /proc/vmallocinfo also changes from\n  [start]-[end]   24576 ringbuf_map_alloc+0x171/0x290 vmalloc user\nto\n  [start]-[end]   24576 ringbuf_map_alloc+0x171/0x290 vmap user","modified":"2026-03-20T12:21:46.157623Z","published":"2024-06-20T11:13:08.007Z","related":["SUSE-SU-2024:2372-1","SUSE-SU-2024:2394-1","SUSE-SU-2024:2939-1"],"database_specific":{"cna_assigner":"Linux","osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/48xxx/CVE-2022-48714.json"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/5e457aeab52a5947619e1f18047f4d2f3212b3eb"},{"type":"WEB","url":"https://git.kernel.org/stable/c/6304a613a97d6dcd49b93fbad31e9f39d1e138d6"},{"type":"WEB","url":"https://git.kernel.org/stable/c/b293dcc473d22a62dc6d78de2b15e4f49515db56"},{"type":"WEB","url":"https://git.kernel.org/stable/c/d578933f6226d5419af9306746efa1c693cbaf9c"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/48xxx/CVE-2022-48714.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-48714"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"457f44363a8894135c85b7a9afd2bd8196db24ab"},{"fixed":"6304a613a97d6dcd49b93fbad31e9f39d1e138d6"},{"fixed":"5e457aeab52a5947619e1f18047f4d2f3212b3eb"},{"fixed":"d578933f6226d5419af9306746efa1c693cbaf9c"},{"fixed":"b293dcc473d22a62dc6d78de2b15e4f49515db56"}]}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-48714.json"}}],"schema_version":"1.7.5"}