CVE-2022-49416
Published: Feb 26, 2025
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: fix use-after-free in chanctx code In ieee80211_vif_use_reserved_context(), when we have an old context and the new context's replace_state is set to IEEE80211_CHANCTX_REPLACE_NONE, we free the old context in ieee80211_vif_use_reserved_reassign(). Therefore, we cannot check the old_ctx anymore, so we should set it to NULL after this point. However, since the new_ctx replace state is clearly not IEEE80211_CHANCTX_REPLACES_OTHER, we're not going to do anything else in this function and can just return to avoid accessing the freed old_ctx.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 5bcae31d9cb1ebfad3ad5a3eea04c8cdc329a04f - < 88cc8f963febe192d6ded9df7217f92f380b449aaffected 5bcae31d9cb1ebfad3ad5a3eea04c8cdc329a04f - < 4ba81e794f0fad6234f644c2da1ae14d5b95e1c4affected 5bcae31d9cb1ebfad3ad5a3eea04c8cdc329a04f - < 9f1e5cc85ad77e52f54049a94db0407445ae2a34affected 5bcae31d9cb1ebfad3ad5a3eea04c8cdc329a04f - < 265bec4779a38b65e86a25120370f200822dfa76affected 5bcae31d9cb1ebfad3ad5a3eea04c8cdc329a04f - < 6118bbdf69f4718b02d26bbcf2e497eb66004331+4 more versions |
Linux | Linux | affected 3.17unaffected 0 - < 3.17unaffected 4.9.318 - <= 4.9.*unaffected 4.14.283 - <= 4.14.*unaffected 4.19.247 - <= 4.19.*+6 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now