2395296 – (CVE-2022-50266) CVE-2022-50266 kernel: kprobes: Fix check for probe enabled in kill_kprobe()

Bug 2395296 (CVE-2022-50266) - CVE-2022-50266 kernel: kprobes: Fix check for probe enabled in kill_kprobe()

Summary: CVE-2022-50266 kernel: kprobes: Fix check for probe enabled in kill_kprobe()

Keywords:
Status:	NEW
Alias:	CVE-2022-50266
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Product Security DevOps Team
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2025-09-15 15:05 UTC by OSIDB Bzimport
Modified:	2025-09-15 23:35 UTC (History)
CC List:	0 users
Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments	(Terms of Use)

Description OSIDB Bzimport 2025-09-15 15:05:59 UTC

In the Linux kernel, the following vulnerability has been resolved:

kprobes: Fix check for probe enabled in kill_kprobe()

In kill_kprobe(), the check whether disarm_kprobe_ftrace() needs to be
called always fails. This is because before that we set the
KPROBE_FLAG_GONE flag for kprobe so that "!kprobe_disabled(p)" is always
false.

The disarm_kprobe_ftrace() call introduced by commit:

  0cb2f1372baa ("kprobes: Fix NULL pointer dereference at kprobe_ftrace_handler")

to fix the NULL pointer reference problem. When the probe is enabled, if
we do not disarm it, this problem still exists.

Fix it by putting the probe enabled check before setting the
KPROBE_FLAG_GONE flag.

Comment 1 Jon Moroney 2025-09-15 23:33:14 UTC

Upstream advisory:
https://lore.kernel.org/linux-cve-announce/2025091504-CVE-2022-50266-9532@gregkh/T

Note You need to log in before you can comment on or make changes to this bug.