{"id":"CVE-2022-50230","summary":"arm64: set UXN on swapper page tables","details":"In the Linux kernel, the following vulnerability has been resolved:\n\narm64: set UXN on swapper page tables\n\n[ This issue was fixed upstream by accident in c3cee924bd85 (\"arm64:\n  head: cover entire kernel image in initial ID map\") as part of a\n  large refactoring of the arm64 boot flow. This simple fix is therefore\n  preferred for -stable backporting ]\n\nOn a system that implements FEAT_EPAN, read/write access to the idmap\nis denied because UXN is not set on the swapper PTEs. As a result,\nidmap_kpti_install_ng_mappings panics the kernel when accessing\n__idmap_kpti_flag. Fix it by setting UXN on these PTEs.","modified":"2026-04-11T12:44:54.949053Z","published":"2025-06-18T11:04:06.716Z","database_specific":{"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/50xxx/CVE-2022-50230.json","cna_assigner":"Linux"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/9283e708a9b8529e7aafac9ab5c5c79a9fab8846"},{"type":"WEB","url":"https://git.kernel.org/stable/c/c3cee924bd855184d15bc4aa6088dcf8e2c1394c"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/50xxx/CVE-2022-50230.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-50230"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"18107f8a2df6bf1c6cac8d0713f757f866d5af51"},{"fixed":"9283e708a9b8529e7aafac9ab5c5c79a9fab8846"},{"fixed":"c3cee924bd855184d15bc4aa6088dcf8e2c1394c"}]}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-50230.json"}},{"package":{"name":"Kernel","ecosystem":"Linux"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"5.13.0"},{"fixed":"5.19.1"}]}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-50230.json"}}],"schema_version":"1.7.5"}