^{CVE-2022-48658:}In the Linux kernel, the following vulnerability has been resolved: mm: slub: fix flush_cpu_slab()/__free_slab() invocations in task context. Commit 5a836bf6b09f ("mm: slub: move flush_cpu_slab() invocations __free_slab() invocations out of IRQ context") moved all flush_cpu_slab() invocations to the global workqueue to avoid a problem related with deactivate_slab()/__free_slab() being called from an IRQ context on PREEMPT_RT kernels. When the flush_all_cpu_locked() function is called from a task context it may happen that a workqueue with WQ_MEM_RECLAIM bit set ends up flushing the global workqueue, this will cause a dependency issue. workqueue: WQ_MEM_RECLAIM nvme-delete-wq:nvme_delete_ctrl_work [nvme_core] is flushing !WQ_MEM_RECLAIM events:flush_cpu_slab WARNING: CPU: 37 PID: 410 at kernel/workqueue.c:2637 check_flush_dependency+0x10a/0x120 Workqueue: nvme-delete-wq nvme_delete_ctrl_work [nvme_core] RIP: 0010:check_flush_dependency+0x10a/0x120[ 453.262125] Call Trace: __flush_work.isra.0+0xbf/0x220 ? __queue_work+0x1dc/0x420 flush_all_cpus_locked+0xfb/0x120 __kmem_cache_shutdown+0x2b/0x320 kmem_cache_destroy+0x49/0x100 bioset_exit+0x143/0x190 blk_release_queue+0xb9/0x100 kobject_cleanup+0x37/0x130 nvme_fc_ctrl_free+0xc6/0x150 [nvme_fc] nvme_free_ctrl+0x1ac/0x2b0 [nvme_core] Fix this bug by creating a workqueue for the flush operation with the WQ_MEM_RECLAIM bit set.

Industry ExposureMost to least

This section illustrates the prevalence of a specific Common Vulnerabilities and Exposures (CVE) across various industries based on customer reports. The ranking displays industries from the most to least affected by this particular vulnerability, offering valuable insight into where this CVE has been most frequently observed. This information can help organizations within these sectors prioritize their security efforts, understand their relative risk exposure compared to their peers, and focus remediation strategies where they are most needed. By understanding the industry-specific impact, organizations can make more informed decisions regarding patching, resource allocation, and overall risk management related to this CVE.

1. Manufacturing
   Manufacturing
2. Health Care & Social Assistance
   Health Care & Social Assistance
3. Public Administration
   Public Administration
4. Finance and Insurance
   Finance and Insurance
5. Transportation & Warehousing
   Transportation & Warehousing
6. Retail Trade
   Retail Trade
7. Educational Services
   Educational Services
8. Other Services (except Public Administration)
   Other Services (except Public Administration)
9. Professional, Scientific, & Technical Services
   Professional, Scientific, & Technical Services
10. Arts, Entertainment & Recreation
    Arts, Entertainment & Recreation
11. Management of Companies & Enterprises
    Management of Companies & Enterprises
12. Utilities
    Utilities
13. Information
    Information
14. Real Estate Rental & Leasing
    Real Estate Rental & Leasing
15. Accommodation & Food Services
    Accommodation & Food Services
16. Administrative, Support, Waste Management & Remediation Services
    Administrative, Support, Waste Management & Remediation Services
17. Agriculture, Forestry Fishing & Hunting
    Agriculture, Forestry Fishing & Hunting
18. Construction
    Construction
19. Mining
    Mining
20. Wholesale Trade
    Wholesale Trade