CVE-2022-48862: 
Linux Kernel vulnerability analysis and mitigation

CVE-2022-48862 affects the Linux kernel's vhost functionality. The vulnerability was discovered in the vhostiotlbaddrangectx() function, where a range size can overflow to 0 when start is 0 and last is ULONGMAX. This occurs when userspace sends an IOTLB message with iova=size=uaddr=0 through vhostprocessiotlbmsg. The issue affects Linux kernel versions from 5.7 up to (excluding) 5.15.29 and from 5.16 up to (excluding) 5.16.15 (NVD).

The vulnerability stems from an implementation flaw in the vhost IOTLB handling code. When an entry with size = 0, start = 0, and last = ULONGMAX is added to the iotlb, it causes iotlbaccess_ok() to enter an infinite loop when processing packets. The vulnerability has a CVSS v3.1 Base Score of 5.5 (MEDIUM) with vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H (NVD).

When exploited, this vulnerability results in a hung thread due to the infinite loop in iotlbaccessok(), which can lead to a denial of service condition. The issue specifically affects the system's ability to process packets, potentially disrupting network operations (Kernel Patch).

The issue has been fixed with two main changes: 1) Adding a check in vhostchrwriteiter() to return -EINVAL when userspace attempts to map a range with size 0, and 2) Modifying vhostiotlbaddrangectx() to handle the range [0, ULONGMAX] by splitting it into two entries. Users should upgrade to Linux kernel version 5.15.29, 5.16.15 or later to receive the fix (Kernel Patch).