CVE-2022-49479

Published: Feb 26, 2025

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: mt76: fix tx status related use-after-free race on station removal There is a small race window where ongoing tx activity can lead to a skb getting added to the status tracking idr after that idr has already been cleaned up, which will keep the wcid linked in the status poll list. Fix this by only adding status skbs if the wcid pointer is still assigned in dev->wcid, which gets cleared early by mt76_sta_pre_rcu_remove

Vendor	Product	Versions
Linux	Linux	affected `bd1e3e7b693c17a04e7d2bd9119daa482b7c7720 - < ef7f9f894cfd0b2e471206409a529af4a26ddd55` affected `bd1e3e7b693c17a04e7d2bd9119daa482b7c7720 - < ddd426d72aca4054045a9bd3b80a4ce1d398f11f` affected `bd1e3e7b693c17a04e7d2bd9119daa482b7c7720 - < fcfe1b5e162bf473c1d47760962cec8523c00466`
Linux	Linux	affected `5.16` unaffected `0 - < 5.16` unaffected `5.17.14 - <= 5.17.` unaffected `5.18.3 - <= 5.18.` unaffected `5.19 - <= *`

References

https://git.kernel.org/stable/c/ef7f9f894cfd0b2e471206409a529af4a26ddd55

https://git.kernel.org/stable/c/ddd426d72aca4054045a9bd3b80a4ce1d398f11f

https://git.kernel.org/stable/c/fcfe1b5e162bf473c1d47760962cec8523c00466

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2022-49479

Description

Affected Products

References