In the Linux kernel, the following vulnerability has been resolved: dax: make sure inodes are flushed before destroy cache A bug can be triggered by following command $ modprobe nd_pmem && modprobe -r nd_pmem [ 10.060014] BUG dax_cache (Not tainted): Objects remaining in dax_cache on __kmem_cache_shutdown() [ 10.060938] Slab 0x0000000085b729ac objects=9 used=1 fp=0x000000004f5ae469 flags=0x200000000010200(slab|head|node) [ 10.062433] Call Trace: [ 10.062673] dump_stack_lvl+0x34/0x44 [ 10.062865] slab_err+0x90/0xd0 [ 10.063619] __kmem_cache_shutdown+0x13b/0x2f0 [ 10.063848] kmem_cache_destroy+0x4a/0x110 [ 10.064058] __x64_sys_delete_module+0x265/0x300 This is caused by dax_fs_exit() not flushing inodes before destroy cache. To fix this issue, call rcu_barrier() before destroy cache.

Metrics

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Affected Vendors & Products

Vendors Products
Redhat
  • Enterprise Linux

No data.

Package CPE Advisory Released Date
Red Hat Enterprise Linux 9
kernel-0:5.14.0-362.8.1.el9_3 cpe:/a:redhat:enterprise_linux:9 RHSA-2023:6583 2023-11-07T00:00:00Z
kernel-0:5.14.0-362.8.1.el9_3 cpe:/o:redhat:enterprise_linux:9 RHSA-2023:6583 2023-11-07T00:00:00Z
References
Link Providers
https://git.kernel.org/stable/c/770d42fff12d8595adda9025a0b92091f543e775 cve-icon cve-icon
https://git.kernel.org/stable/c/a7e8de822e0b1979f08767c751f6c8a9c1d4ad86 cve-icon cve-icon
https://git.kernel.org/stable/c/b786abe7c67c6ef71410c8e23292b3091d616ad1 cve-icon cve-icon
https://git.kernel.org/stable/c/e2951eaa9398415ac054b7bd80b8163b6838ead4 cve-icon cve-icon
https://git.kernel.org/stable/c/ec376f5c11c88c0215d173599db8449cd4196759 cve-icon cve-icon
https://git.kernel.org/stable/c/f2a1e0eb70c2d954176c07d75d28742bde30e9f3 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2025022621-CVE-2022-49220-7247@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2022-49220 cve-icon
https://www.cve.org/CVERecord?id=CVE-2022-49220 cve-icon
History

Sat, 07 Jun 2025 03:00:00 +0000

Type Values Removed Values Added
First Time appeared Redhat
Redhat enterprise Linux
CPEs cpe:/a:redhat:enterprise_linux:9
cpe:/o:redhat:enterprise_linux:9
Vendors & Products Redhat
Redhat enterprise Linux

Thu, 27 Feb 2025 01:45:00 +0000

Type Values Removed Values Added
References
Metrics threat_severity

None

 cvssV3_1

{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H'}

threat_severity

Moderate

Wed, 26 Feb 2025 02:15:00 +0000

Type Values Removed Values Added
Description In the Linux kernel, the following vulnerability has been resolved: dax: make sure inodes are flushed before destroy cache A bug can be triggered by following command $ modprobe nd_pmem && modprobe -r nd_pmem [ 10.060014] BUG dax_cache (Not tainted): Objects remaining in dax_cache on __kmem_cache_shutdown() [ 10.060938] Slab 0x0000000085b729ac objects=9 used=1 fp=0x000000004f5ae469 flags=0x200000000010200(slab|head|node) [ 10.062433] Call Trace: [ 10.062673] dump_stack_lvl+0x34/0x44 [ 10.062865] slab_err+0x90/0xd0 [ 10.063619] __kmem_cache_shutdown+0x13b/0x2f0 [ 10.063848] kmem_cache_destroy+0x4a/0x110 [ 10.064058] __x64_sys_delete_module+0x265/0x300 This is caused by dax_fs_exit() not flushing inodes before destroy cache. To fix this issue, call rcu_barrier() before destroy cache.
Title dax: make sure inodes are flushed before destroy cache
References
cve-icon MITRE

Status: PUBLISHED

Assigner: Linux

Published:

Updated: 2025-05-04T08:32:44.211Z

Reserved: 2025-02-26T01:49:39.292Z

Link: CVE-2022-49220

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Received

Published: 2025-02-26T07:00:59.070

Modified: 2025-02-26T07:00:59.070

Link: CVE-2022-49220

cve-icon Redhat

Severity : Moderate

Publid Date: 2025-02-26T00:00:00Z

Links: CVE-2022-49220 - Bugzilla