{ "dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": { "cveId": "CVE-2022-50225", "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "state": "PUBLISHED", "assignerShortName": "Linux", "dateReserved": "2025-06-18T10:57:27.431Z", "datePublished": "2025-06-18T11:03:58.643Z", "dateUpdated": "2026-05-11T19:15:13.791Z" }, "containers": { "cna": { "providerMetadata": { "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "shortName": "Linux", "dateUpdated": "2026-05-11T19:15:13.791Z" }, "descriptions": [ { "lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nriscv:uprobe fix SR_SPIE set/clear handling\n\nIn riscv the process of uprobe going to clear spie before exec\nthe origin insn,and set spie after that.But When access the page\nwhich origin insn has been placed a page fault may happen and\nirq was disabled in arch_uprobe_pre_xol function,It cause a WARN\nas follows.\nThere is no need to clear/set spie in arch_uprobe_pre/post/abort_xol.\nWe can just remove it.\n\n[ 31.684157] BUG: sleeping function called from invalid context at kernel/locking/rwsem.c:1488\n[ 31.684677] in_atomic(): 0, irqs_disabled(): 1, non_block: 0, pid: 76, name: work\n[ 31.684929] preempt_count: 0, expected: 0\n[ 31.685969] CPU: 2 PID: 76 Comm: work Tainted: G\n[ 31.686542] Hardware name: riscv-virtio,qemu (DT)\n[ 31.686797] Call Trace:\n[ 31.687053] [] dump_backtrace+0x30/0x38\n[ 31.687699] [] show_stack+0x40/0x4c\n[ 31.688141] [] dump_stack_lvl+0x44/0x5c\n[ 31.688396] [] dump_stack+0x18/0x20\n[ 31.688653] [] __might_resched+0x114/0x122\n[ 31.688948] [] __might_sleep+0x50/0x7a\n[ 31.689435] [] down_read+0x30/0x130\n[ 31.689728] [] do_page_fault+0x166/x446\n[ 31.689997] [] ret_from_exception+0x0/0xc" } ], "affected": [ { "product": "Linux", "vendor": "Linux", "defaultStatus": "unaffected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": [ "arch/riscv/kernel/probes/uprobes.c" ], "versions": [ { "version": "74784081aac8a0f3636965fc230e2d3b7cc123c6", "lessThan": "c71e000db8536d27ec410abb3e314896a78b4f19", "status": "affected", "versionType": "git" }, { "version": "74784081aac8a0f3636965fc230e2d3b7cc123c6", "lessThan": "3811d51778900064d27d8c9a98f73410fb3b471d", "status": "affected", "versionType": "git" }, { "version": "74784081aac8a0f3636965fc230e2d3b7cc123c6", "lessThan": "73fc099eaefd9a92c83b6c07dad066411fd5a192", "status": "affected", "versionType": "git" }, { "version": "74784081aac8a0f3636965fc230e2d3b7cc123c6", "lessThan": "3dbe5829408bc1586f75b4667ef60e5aab0209c7", "status": "affected", "versionType": "git" } ] }, { "product": "Linux", "vendor": "Linux", "defaultStatus": "affected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": [ "arch/riscv/kernel/probes/uprobes.c" ], "versions": [ { "version": "5.12", "status": "affected" }, { "version": "0", "lessThan": "5.12", "status": "unaffected", "versionType": "semver" }, { "version": "5.15.61", "lessThanOrEqual": "5.15.*", "status": "unaffected", "versionType": "semver" }, { "version": "5.18.18", "lessThanOrEqual": "5.18.*", "status": "unaffected", "versionType": "semver" }, { "version": "5.19.2", "lessThanOrEqual": "5.19.*", "status": "unaffected", "versionType": "semver" }, { "version": "6.0", "lessThanOrEqual": "*", "status": "unaffected", "versionType": "original_commit_for_fix" } ] } ], "cpeApplicability": [ { "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "5.12", "versionEndExcluding": "5.15.61" }, { "vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "5.12", "versionEndExcluding": "5.18.18" }, { "vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "5.12", "versionEndExcluding": "5.19.2" }, { "vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "5.12", "versionEndExcluding": "6.0" } ] } ] } ], "references": [ { "url": "https://git.kernel.org/stable/c/c71e000db8536d27ec410abb3e314896a78b4f19" }, { "url": "https://git.kernel.org/stable/c/3811d51778900064d27d8c9a98f73410fb3b471d" }, { "url": "https://git.kernel.org/stable/c/73fc099eaefd9a92c83b6c07dad066411fd5a192" }, { "url": "https://git.kernel.org/stable/c/3dbe5829408bc1586f75b4667ef60e5aab0209c7" } ], "title": "riscv:uprobe fix SR_SPIE set/clear handling", "x_generator": { "engine": "bippy-1.2.0" } } } }