CVE-2022-49524
Published: Feb 26, 2025
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: media: pci: cx23885: Fix the error handling in cx23885_initdev() When the driver fails to call the dma_set_mask(), the driver will get the following splat: [ 55.853884] BUG: KASAN: use-after-free in __process_removed_driver+0x3c/0x240 [ 55.854486] Read of size 8 at addr ffff88810de60408 by task modprobe/590 [ 55.856822] Call Trace: [ 55.860327] __process_removed_driver+0x3c/0x240 [ 55.861347] bus_for_each_dev+0x102/0x160 [ 55.861681] i2c_del_driver+0x2f/0x50 This is because the driver has initialized the i2c related resources in cx23885_dev_setup() but not released them in error handling, fix this bug by modifying the error path that jumps after failing to call the dma_set_mask().
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 2bc46b3ad3c15165f91459b07ff8682478683194 - < 6041d1a0365baa729b6adfb6ed5386d9388018dbaffected 2bc46b3ad3c15165f91459b07ff8682478683194 - < 7b9978e1c94e569d65a0e7e719abb9340f5db4a0affected 2bc46b3ad3c15165f91459b07ff8682478683194 - < fa636e9ee4442215cd9a2e079cd5a8e1fe0cb8baaffected 2bc46b3ad3c15165f91459b07ff8682478683194 - < ca17e7a532d1a55466cc007b3f4d319541a27493affected 2bc46b3ad3c15165f91459b07ff8682478683194 - < 98106f100f50c487469903b9cf6d966785fc9cc3+3 more versions |
Linux | Linux | affected 4.8unaffected 0 - < 4.8unaffected 4.14.283 - <= 4.14.*unaffected 4.19.247 - <= 4.19.*unaffected 5.4.198 - <= 5.4.*+5 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now