What is the severity of CVE-2022-49133?

CVE-2022-49133 is classified as a moderate severity vulnerability in the Linux kernel.

How do I fix CVE-2022-49133?

To fix CVE-2022-49133, ensure that your Linux kernel is updated to a version that contains the patch for this vulnerability.

What systems are affected by CVE-2022-49133?

CVE-2022-49133 affects the Linux kernel and systems using the AMD amdgpu driver.

What type of attack does CVE-2022-49133 relate to?

CVE-2022-49133 relates to a deadlock issue within the AMD kernel driver during process exit.

Has CVE-2022-49133 been publicly disclosed?

Yes, CVE-2022-49133 has been publicly disclosed and addressed in kernel updates.

Vulnerability/
CVE-2022-49133

26/2/2025

1/4/2025

CVE-2022-49133: drm/amdkfd: svm range restore work deadlock when process exit

First published: Wed Feb 26 2025(Updated: )

In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: svm range restore work deadlock when process exit kfd_process_notifier_release flush svm_range_restore_work which calls svm_range_list_lock_and_flush_work to flush deferred_list work, but if deferred_list work mmput release the last user, it will call exit_mmap -> notifier_release, it is deadlock with below backtrace. Move flush svm_range_restore_work to kfd_process_wq_release to avoid deadlock. Then svm_range_restore_work take task->mm ref to avoid mm is gone while validating and mapping ranges to GPU. Workqueue: events svm_range_deferred_list_work [amdgpu] Call Trace: wait_for_completion+0x94/0x100 __flush_work+0x12a/0x1e0 __cancel_work_timer+0x10e/0x190 cancel_delayed_work_sync+0x13/0x20 kfd_process_notifier_release+0x98/0x2a0 [amdgpu] __mmu_notifier_release+0x74/0x1f0 exit_mmap+0x170/0x200 mmput+0x5d/0x130 svm_range_deferred_list_work+0x104/0x230 [amdgpu] process_one_work+0x220/0x3c0

Credit: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Affected Software	Affected Version	How to fix
Linux Kernel
X.Org XServer with AMDGPU Driver

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2022-49133?
CVE-2022-49133 is classified as a moderate severity vulnerability in the Linux kernel.
How do I fix CVE-2022-49133?
To fix CVE-2022-49133, ensure that your Linux kernel is updated to a version that contains the patch for this vulnerability.
What systems are affected by CVE-2022-49133?
CVE-2022-49133 affects the Linux kernel and systems using the AMD amdgpu driver.
What type of attack does CVE-2022-49133 relate to?
CVE-2022-49133 relates to a deadlock issue within the AMD kernel driver during process exit.
Has CVE-2022-49133 been publicly disclosed?
Yes, CVE-2022-49133 has been publicly disclosed and addressed in kernel updates.

collector/mitre-cve
source/MITRE
collector/nvd-api
source/NVD
agent/first-publish-date
agent/type
agent/title
agent/author
agent/references
agent/source
agent/description
agent/event
agent/last-modified-date
agent/softwarecombine
agent/tags
agent/guess-ai
agent/software-canonical-lookup
agent/software-canonical-lookup-request
vendor/linux
canonical/linux kernel
vendor/amd
canonical/x.org xserver with amdgpu driver

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.