CVE-2022-49674: 
Linux Kernel vulnerability analysis and mitigation

CVE-2022-49674 is a vulnerability in the Linux kernel's dm-raid module that was discovered and fixed in 2022. The issue occurs during dm-raid table load operations where the device allocates an array rs->devs[rs->raid_disks] for raid device members. The vulnerability manifests when RAID layout changes are requested, as the number of members can differ from the current configuration defined in their superblocks (Kernel Git).

The vulnerability stems from improper array access control in the dm-raid module. When accessing array members, the code incorrectly used rs->md.raid_disks instead of rs->raid_disks in control loops, potentially causing memory access beyond the end of the rs->devs array. This issue particularly affects scenarios involving RAID layout changes such as raid1 legs being added/removed, raid4/5/6/10 number of stripes being changed (stripe reshaping), or takeover to higher raid level (e.g., raid5 -> raid6). The out-of-bounds memory access was initially discovered using KASAN (Kernel Address Sanitizer) (Kernel Git).

The vulnerability could lead to out-of-bounds memory access in the Linux kernel's dm-raid module. This type of vulnerability typically can result in system crashes, memory corruption, or potential privilege escalation, though specific impact details were not publicly disclosed (Kernel Git).

The issue was fixed by modifying the code to use rs->raid_disks instead of rs->md.raid_disks in control loops, and adding proper validation for all devices being added. The fix also included cleanup of the raid_iterate_devices() function with proper bracing. The patch was verified to pass all LVM2 RAID tests with KASAN enabled (Kernel Git).