CVE-2022-49964 Information

Jun 19, 2025 cve

Description

In the Linux kernel the following vulnerability has been resolved:

arm64: cacheinfo: Fix incorrect assignment of signed error value to unsigned fw_level

Though acpi_find_last_cache_level() always returned signed value and the document states it will return any errors caused by lack of a PPTT table it never returned negative values before.

Commit 0c80f9e165f8 (\ACPI: PPTT: Leave the table mapped for the runtime usage) however changed it by returning -ENOENT if no PPTT was found. The value returned from acpi_find_last_cache_level() is then assigned to unsigned fw_level.

It will result in the number of cache leaves calculated incorrectly as a huge value which will then cause the following warning from __alloc_pages as the order would be great than MAX_ORDER because of incorrect and huge cache leaves value.

Fix the same by changing fw_level to be signed integer and return the error from init_cache_level() early in case of error.

Reference

https://git.kernel.org/stable/c/1668c38ef2e5bb80dbee88afcecfcdc3e7abc2aa https://git.kernel.org/stable/c/29906311b351e5398aff2c5dc209f8b6c9d6a410 https://git.kernel.org/stable/c/43b9af72751a98cb9c074b170fc244714aeb59d5 https://git.kernel.org/stable/c/a754ee1c66bd0a23e613f0bf865053b29cb90e16 https://git.kernel.org/stable/c/e75d18cecbb3805895d8ed64da4f78575ec96043 https://git.kernel.org/stable/c/fcab25a6b0ace130589d810390d1ce3698b53604

CNNVD-202506-2251 (Published: 2025-06-18)

Share on:

CVE-2022-49964 Information

Description

Reference

Related CNNVD