CVE-2022-49968
Published: Jun 18, 2025
Modified: May 23, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: ieee802154/adf7242: defer destroy_workqueue call There is a possible race condition (use-after-free) like below (FREE) | (USE) adf7242_remove | adf7242_channel cancel_delayed_work_sync | destroy_workqueue (1) | adf7242_cmd_rx | mod_delayed_work (2) | The root cause for this race is that the upper layer (ieee802154) is unaware of this detaching event and the function adf7242_channel can be called without any checks. To fix this, we can add a flag write at the beginning of adf7242_remove and add flag check in adf7242_channel. Or we can just defer the destructive operation like other commit 3e0588c291d6 ("hamradio: defer ax25 kfree after unregister_netdev") which let the ieee802154_unregister_hw() to handle the synchronization. This patch takes the second option. runs")
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 58e9683d14752debc6f22daf6b23e031787df31f - < dede80aaf01f4b6e8657d23726cb4a3da226ec4caffected 58e9683d14752debc6f22daf6b23e031787df31f - < bed12d7531df1417fc92c691999ff95e03835008affected 58e9683d14752debc6f22daf6b23e031787df31f - < 23a29932715ca43bceb2eae1bdb770995afe7271affected 58e9683d14752debc6f22daf6b23e031787df31f - < 9f8558c5c642c62c450c98c99b7d18a709fff485affected 58e9683d14752debc6f22daf6b23e031787df31f - < 15f3b89bd521d5770d36a61fc04a77c293138ba6+3 more versions |
Linux | Linux | affected 4.18unaffected 0 - < 4.18unaffected 4.19.258 - <= 4.19.*unaffected 5.4.213 - <= 5.4.*unaffected 5.10.142 - <= 5.10.*+3 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now