CVE-2022-48990: 
Linux Kernel vulnerability analysis and mitigation

CVE-2022-48990 is a use-after-free vulnerability discovered in the Linux kernel's AMD GPU driver. The issue specifically affects the GPU recovery process in the drm/amdgpu module. The vulnerability was identified when a refcount_t underflow led to a use-after-free condition during GPU recovery operations (NVD, Red Hat).

The vulnerability occurs in the amdgpu driver when handling GPU recovery operations. The issue stems from a situation where the fwfence may not be initialized, and the code fails to check whether dmafenceinit is performed before job free. This leads to a use-after-free condition, which is triggered in the amdgpujobfreecb function. The vulnerability has been assigned a CVSS v3.1 base score of 7.8 (HIGH) with the vector string CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H (NVD).

The vulnerability affects Linux kernel versions up to (excluding) 6.0.13, as well as various 6.1 release candidates (rc1 through rc6). When exploited, this use-after-free vulnerability could potentially lead to privilege escalation, system crashes, or arbitrary code execution in the context of the kernel (NVD).

The vulnerability has been patched by modifying the amdgpujobfreecb function to check whether the hwfence has embedded fence operations before attempting to free it. The fix ensures proper handling of the fence initialization state by adding a condition to check job->hwfence.ops before performing dmafence_put operations (Kernel Patch).