Unrated severityNVD Advisory· Published Jun 18, 2025

locking/csd_lock: Change csdlock_debug from early_param to __setup

CVE-2022-50091

Description

In the Linux kernel, the following vulnerability has been resolved:

The csdlock_debug kernel-boot parameter is parsed by the early_param() function csdlock_debug(). If set, csdlock_debug() invokes static_branch_enable() to enable csd_lock_wait feature, which triggers a panic on arm64 for kernels built with CONFIG_SPARSEMEM=y and CONFIG_SPARSEMEM_VMEMMAP=n.

With CONFIG_SPARSEMEM_VMEMMAP=n, __nr_to_section is called in static_key_enable() and returns NULL, resulting in a NULL dereference because mem_section is initialized only later in sparse_init().

This is also a problem for powerpc because early_param() functions are invoked earlier than jump_label_init(), also resulting in static_key_enable() failures. These failures cause the warning "static key 'xxx' used before call to jump_label_init()".

Thus, early_param is too early for csd_lock_wait to run static_branch_enable(), so changes it to __setup to fix these.

Affected products

Linux/Linux Kernel Rtllm-fuzzy
osv-coords43 versions
pkg:rpm/suse/kernel-64kb&distro=SUSE%20Enterprise%20Storage%207.1 pkg:rpm/suse/kernel-64kb&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP3-LTSS pkg:rpm/suse/kernel-default-base&distro=SUSE%20Enterprise%20Storage%207.1 pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20Micro%205.1 pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20Micro%205.2 pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP3-LTSS pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP3 pkg:rpm/suse/kernel-default&distro=SUSE%20Enterprise%20Storage%207.1 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20High%20Availability%20Extension%2015%20SP3 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2012%20SP5 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP3 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Micro%205.1 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Micro%205.2 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5-LTSS pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP3-LTSS pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP3 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%20LTSS%20Extended%20Security%2012%20SP5 pkg:rpm/suse/kernel-docs&distro=SUSE%20Enterprise%20Storage%207.1 pkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP3-LTSS pkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP3 pkg:rpm/suse/kernel-livepatch-SLE15-SP3_Update_59&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP3 pkg:rpm/suse/kernel-obs-build&distro=SUSE%20Enterprise%20Storage%207.1 pkg:rpm/suse/kernel-obs-build&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP3-LTSS pkg:rpm/suse/kernel-obs-build&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP3 pkg:rpm/suse/kernel-preempt&distro=SUSE%20Enterprise%20Storage%207.1 pkg:rpm/suse/kernel-preempt&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP3-LTSS pkg:rpm/suse/kernel-preempt&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP3 pkg:rpm/suse/kernel-rt&distro=SUSE%20Linux%20Enterprise%20Micro%205.1 pkg:rpm/suse/kernel-rt&distro=SUSE%20Linux%20Enterprise%20Micro%205.2 pkg:rpm/suse/kernel-source&distro=SUSE%20Enterprise%20Storage%207.1 pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5-LTSS pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP3-LTSS pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP3 pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%20LTSS%20Extended%20Security%2012%20SP5 pkg:rpm/suse/kernel-source-rt&distro=SUSE%20Linux%20Enterprise%20Micro%205.1 pkg:rpm/suse/kernel-source-rt&distro=SUSE%20Linux%20Enterprise%20Micro%205.2 pkg:rpm/suse/kernel-syms&distro=SUSE%20Enterprise%20Storage%207.1 pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5-LTSS pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP3-LTSS pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP3 pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%20LTSS%20Extended%20Security%2012%20SP5 pkg:rpm/suse/kernel-zfcpdump&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP3-LTSS pkg:rpm/suse/kgraft-patch-SLE12-SP5_Update_70&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2012%20SP5
< 5.3.18-150300.59.211.1+ 42 more
- (no CPE)range: < 5.3.18-150300.59.211.1
- (no CPE)range: < 5.3.18-150300.59.211.1
- (no CPE)range: < 5.3.18-150300.59.211.1.150300.18.126.1
- (no CPE)range: < 5.3.18-150300.59.211.1.150300.18.126.1
- (no CPE)range: < 5.3.18-150300.59.211.1.150300.18.126.1
- (no CPE)range: < 5.3.18-150300.59.211.1.150300.18.126.1
- (no CPE)range: < 5.3.18-150300.59.211.1.150300.18.126.1
- (no CPE)range: < 5.3.18-150300.59.211.1
- (no CPE)range: < 5.3.18-150300.59.211.1
- (no CPE)range: < 4.12.14-122.266.1
- (no CPE)range: < 5.3.18-150300.59.211.1
- (no CPE)range: < 5.3.18-150300.59.211.1
- (no CPE)range: < 5.3.18-150300.59.211.1
- (no CPE)range: < 4.12.14-122.266.1
- (no CPE)range: < 5.3.18-150300.59.211.1
- (no CPE)range: < 5.3.18-150300.59.211.1
- (no CPE)range: < 4.12.14-122.266.1
- (no CPE)range: < 5.3.18-150300.59.211.1
- (no CPE)range: < 5.3.18-150300.59.211.1
- (no CPE)range: < 5.3.18-150300.59.211.1
- (no CPE)range: < 1-150300.7.3.1
- (no CPE)range: < 5.3.18-150300.59.212.1
- (no CPE)range: < 5.3.18-150300.59.212.1
- (no CPE)range: < 5.3.18-150300.59.212.1
- (no CPE)range: < 5.3.18-150300.59.211.1
- (no CPE)range: < 5.3.18-150300.59.211.1
- (no CPE)range: < 5.3.18-150300.59.211.1
- (no CPE)range: < 5.3.18-150300.214.1
- (no CPE)range: < 5.3.18-150300.214.1
- (no CPE)range: < 5.3.18-150300.59.211.1
- (no CPE)range: < 4.12.14-122.266.1
- (no CPE)range: < 5.3.18-150300.59.211.1
- (no CPE)range: < 5.3.18-150300.59.211.1
- (no CPE)range: < 4.12.14-122.266.1
- (no CPE)range: < 5.3.18-150300.214.1
- (no CPE)range: < 5.3.18-150300.214.1
- (no CPE)range: < 5.3.18-150300.59.211.1
- (no CPE)range: < 4.12.14-122.266.1
- (no CPE)range: < 5.3.18-150300.59.211.1
- (no CPE)range: < 5.3.18-150300.59.211.1
- (no CPE)range: < 4.12.14-122.266.1
- (no CPE)range: < 5.3.18-150300.59.211.1
- (no CPE)range: < 1-8.5.1
Linux/Linuxcpe-rescue
Range: 5.13

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000