Security tracker / CVE-2022-49004

CVE-2022-49004

riscv: Sync efi page table's kernel mappings before switching

References

• Debian security tracker
• cve.org

Notes

 carnil> Introduced in b91540d52a08 ("RISC-V: Add EFI runtime services"). Vulnerable
 carnil> versions: 5.10-rc1.

Bugs

Status

Branch	Status
upstream	released (6.1-rc8) [3f105a742725a1b78766a55169f1d827732e62b8]
6.18-upstream-stable	N/A "Fixed before branching point"
6.17-upstream-stable	N/A "Fixed before branching point"
6.12-upstream-stable	N/A "Fixed before branching point"
6.11-upstream-stable	N/A "Fixed before branching point"
6.10-upstream-stable	N/A "Fixed before branching point"
6.6-upstream-stable	N/A "Fixed before branching point"
6.1-upstream-stable	N/A "Fixed before branching point"
5.10-upstream-stable	needed
4.19-upstream-stable	N/A "Vulnerable code not present"
sid	released (6.0.12-1)
6.12-trixie-security	N/A "Fixed before branching point"
6.1-bookworm-security	N/A "Fixed before branching point"
5.10-bullseye-security	needed