Bug 2395433 (CVE-2022-50322) - CVE-2022-50322 kernel: rtc: msc313: Fix function prototype mismatch in msc313_rtc_probe()
Summary: CVE-2022-50322 kernel: rtc: msc313: Fix function prototype mismatch in msc313...
Keywords:
Status: NEW
Alias: CVE-2022-50322
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
low
low
Target Milestone: ---
Assignee: Product Security DevOps Team
QA Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2025-09-15 15:13 UTC by OSIDB Bzimport
Modified: 2025-09-15 16:21 UTC (History)
0 users

Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments (Terms of Use)

Description OSIDB Bzimport 2025-09-15 15:13:36 UTC 
In the Linux kernel, the following vulnerability has been resolved:

rtc: msc313: Fix function prototype mismatch in msc313_rtc_probe()

With clang's kernel control flow integrity (kCFI, CONFIG_CFI_CLANG),
indirect call targets are validated against the expected function
pointer prototype to make sure the call target is valid to help mitigate
ROP attacks. If they are not identical, there is a failure at run time,
which manifests as either a kernel panic or thread getting killed.

msc313_rtc_probe() was passing clk_disable_unprepare() directly, which
did not have matching prototypes for devm_add_action_or_reset()'s
callback argument. Refactor to use devm_clk_get_enabled() instead.

This was found as a result of Clang's new -Wcast-function-type-strict
flag, which is more sensitive than the simpler -Wcast-function-type,
which only checks for type width mismatches.
Comment 1 Jon Moroney 2025-09-15 16:17:43 UTC 
Upstream advisory:
https://lore.kernel.org/linux-cve-announce/2025091553-CVE-2022-50322-079d@gregkh/T
Note You need to log in before you can comment on or make changes to this bug.