LiveActive security incident?Get immediate response
CVE Record

CVE-2022-50472: IB/mad: Don't call to function that might sleep while in atomic context

In the Linux kernel, the following vulnerability has been resolved: IB/mad: Don't call to function that might sleep while in atomic context Tracepoints are not allowed to sleep, as such the following splat is generated due to call to ib_query_pkey() in atomic context. WARNING: CPU: 0 PID: 1888000 at kernel/trace/ring_buffer.c:2492 rb_commit+0xc1/0x220 CPU: 0 PID: 1888000 Comm: kworker/u9:0 Kdump: loaded Tainted: G OE --------- - - 4.18.0-305.3.1.el8.x86_64 #1 Hardware name: Red Hat KVM, BIOS 1.13.0-2.module_el8.3.0+555+a55c8938 04/01/2014 Workqueue: ib-comp-unb-wq ib_cq_poll_work [ib_core] RIP: 0010:rb_commit+0xc1/0x220 RSP: 0000:ffffa8ac80f9bca0 EFLAGS: 00010202 RAX: ffff8951c7c01300 RBX: ffff8951c7c14a00 RCX: 0000000000000246 RDX: ffff8951c707c000 RSI: ffff8951c707c57c RDI: ffff8951c7c14a00 RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 R10: ffff8951c7c01300 R11: 0000000000000001 R12: 0000000000000246 R13: 0000000000000000 R14: ffffffff964c70c0 R15: 0000000000000000 FS: 0000000000000000(0000) GS:ffff8951fbc00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 00007f20e8f39010 CR3: 000000002ca10005 CR4: 0000000000170ef0 Call Trace: ring_buffer_unlock_commit+0x1d/0xa0 trace_buffer_unlock_commit_regs+0x3b/0x1b0 trace_event_buffer_commit+0x67/0x1d0 trace_event_raw_event_ib_mad_recv_done_handler+0x11c/0x160 [ib_core] ib_mad_recv_done+0x48b/0xc10 [ib_core] ? trace_event_raw_event_cq_poll+0x6f/0xb0 [ib_core] __ib_process_cq+0x91/0x1c0 [ib_core] ib_cq_poll_work+0x26/0x80 [ib_core] process_one_work+0x1a7/0x360 ? create_worker+0x1a0/0x1a0 worker_thread+0x30/0x390 ? create_worker+0x1a0/0x1a0 kthread+0x116/0x130 ? kthread_flush_work_fn+0x10/0x10 ret_from_fork+0x35/0x40 ---[ end trace 78ba8509d3830a16 ]---

UnknownCVSS not scoredNot KEV-listedUpdated
Glexia's TakeAutomated analysisunknown

Security readout for executives and security teams

Plain-English summary

CVE-2022-50472 is a Linux kernel RDMA/InfiniBand issue where tracing code could call a function that may sleep in an atomic context. The public description shows kernel warnings, but does not provide CVSS, business impact detail, or evidence of active exploitation.

Executive priority

Treat this as a targeted Linux kernel maintenance item, not an emergency internet-wide incident based on current evidence. Prioritize high-performance computing, storage, virtualization, or data-center systems where RDMA or InfiniBand is in use.

Technical view

The issue is in Linux kernel IB/mad tracepoint handling. ib_query_pkey() could be reached from trace_event_raw_event_ib_mad_recv_done_handler while execution was in atomic context, triggering a ring buffer warning path. Stable kernel commits are listed as the resolution references.

Likely exposure

Exposure appears limited to Linux systems running affected kernel versions with relevant InfiniBand/RDMA IB/mad code paths present or enabled. The source bundle lists Linux as affected across several kernel version ranges, but does not identify specific distributions or default configurations.

Exploitation context

The bundle marks KEV as false and provides no cited evidence of active exploitation or public weaponization. The observable symptom in the source is a kernel warning trace, not a documented remote compromise path.

Researcher notes

Evidence is incomplete for impact severity, exploitability, and distribution-specific fixed builds. Analysis should focus on the referenced stable commits and affected kernel ranges, then map them to vendor kernel packages and local RDMA usage.

Mitigation direction

  • Update to a vendor-supported kernel that includes the referenced stable fixes.
  • Check distribution advisories for exact fixed package versions.
  • Prioritize systems using InfiniBand, RDMA, or related kernel modules.
  • Avoid direct deployment shortcuts; follow normal tested kernel rollout procedures.

Validation and detection

  • Inventory Linux kernel versions across servers and appliances.
  • Identify systems using InfiniBand, RDMA, or IB/mad functionality.
  • Compare running kernels with vendor fixed versions or referenced stable commits.
  • Review kernel logs for matching rb_commit or IB/mad warning traces.
Prepared
Confidence
medium
Sources
7

Generated from the cited source records. This long-tail analysis has not been individually reviewed by a named human.

Potential ATT&CK relevance

Conservative CVE-to-ATT&CK context

These mappings and lookup hints may be relevant to the vulnerability behavior, CWE, affected product, or exposure path. Glexia-inferred context is not an official MITRE, ATT&CK, CWE, or CVE Program mapping.

ATT&CK lookup starting points

Use these exact CWE pages and searches to review the Glexia ATT&CK library from this CVE's weakness and description context.

cve · low confidence lookup

CVE-2022-50472 mapping review

Open the CVE-to-ATT&CK bridge for reviewed, inferred, or future official mappings tied to this CVE.

Open ATT&CK lookup
Vulnerability profileCVE Program record
Severity
Unknown
CVSS
Not scored
Known Exploited
No
Published
Official CVE source material

CNA and ADP enrichment extracted from CVE v5

These fields come from the CVE record and ADP containers, not from Glexia's Take. They preserve time-varying source decisions such as CISA SSVC, KEV status, CVSS metrics, and provider references.

0CVSS vectors
3Timeline events
0ADP providers
6Source links

Vulnerability timeline

Timeline events are normalized from CVE metadata, CNA source timelines, ADP timelines, and KEV metadata when present.

  1. CVE reservedCVE Program

    The CVE ID was reserved by the assigning CNA.

  2. CVE publishedCVE Program

    The CVE record was published.

  3. CVE updatedCVE Program

    The CVE record metadata indicates this as the latest update time.

Affected products

Products and packages named in the record

VendorProductVersion / packageStatus
LinuxLinux821bf1de45a1a084e2e11b1a2308777434194bfe, 821bf1de45a1a084e2e11b1a2308777434194bfe, 821bf1de45a1a084e2e11b1a2308777434194bfe, 821bf1de45a1a084e2e11b1a2308777434194bfe, 821bf1de45a1a084e2e11b1a2308777434194bfeunaffected
LinuxLinux5.2, 0, 5.10.258, 5.15.86, 6.0.16, 6.1.2, 6.2affected
Weakness

CWE details

No CWE listed

CWE links open Glexia weakness intelligence pages with official CWE context, developer remediation guidance, and related CVE mappings.