CVE-2022-49180: 
Linux Kernel vulnerability analysis and mitigation

CVE-2022-49180 addresses a vulnerability in the Linux kernel's Linux Security Module (LSM) system, specifically related to a general protection fault in legacyparseparam. The issue occurs when handling mount options where a security module returns an error code indicating it does not recognize an input. The vulnerability was discovered when Smack (a security module) processes a mount option it recognizes and returns 0, followed by a BPF hook returning -ENOPARAM, which causes confusion in the caller (NVD).

The vulnerability stems from two main issues in the LSM hook system: First, the usual LSM hook 'bail on fail' scheme doesn't work properly for cases where a security module returns an error code indicating it does not recognize an input. Second, the SELinux hook incorrectly returns 1 on success, when the current expectation is that it should return 0 on success. This inconsistency in return values leads to a general protection fault when processing mount parameters (Kernel Commit).

When exploited, this vulnerability can lead to a general protection fault in the Linux kernel, potentially causing system instability or crashes when processing certain mount options with security modules enabled (NVD).

The issue has been fixed in the Linux kernel through a patch that modifies how the LSM hook system handles return values from security modules. The fix includes changes to both the security subsystem and SELinux hooks, ensuring proper handling of return values and error conditions (Kernel Commit).