CVE-2022-49524
- Source
- https://cve.org/CVERecord?id=CVE-2022-49524
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-49524.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2022-49524
- Downstream
- Related
- Published
- 2025-02-26T02:13:48.222Z
- Modified
- 2026-03-12T03:25:21.826525Z
- Severity
-
- 7.8 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- media: pci: cx23885: Fix the error handling in cx23885_initdev()
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
media: pci: cx23885: Fix the error handling in cx23885_initdev()
When the driver fails to call the dmasetmask(), the driver will get the following splat:
[ 55.853884] BUG: KASAN: use-after-free in __processremoveddriver+0x3c/0x240 [ 55.854486] Read of size 8 at addr ffff88810de60408 by task modprobe/590 [ 55.856822] Call Trace: [ 55.860327] _processremoveddriver+0x3c/0x240 [ 55.861347] busforeachdev+0x102/0x160 [ 55.861681] i2cdeldriver+0x2f/0x50
This is because the driver has initialized the i2c related resources in cx23885devsetup() but not released them in error handling, fix this bug by modifying the error path that jumps after failing to call the dmasetmask().
- Database specific
{ "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/49xxx/CVE-2022-49524.json", "cna_assigner": "Linux" }- References
-
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- https://git.kernel.org/stable/c/453514a874c78df1e7804e6e3aaa60c8d8deb6a8
- https://git.kernel.org/stable/c/6041d1a0365baa729b6adfb6ed5386d9388018db
- https://git.kernel.org/stable/c/7b9978e1c94e569d65a0e7e719abb9340f5db4a0
- https://git.kernel.org/stable/c/86bd6a579c6c60547706cabf299cd2c9feab3332
- https://git.kernel.org/stable/c/98106f100f50c487469903b9cf6d966785fc9cc3
- https://git.kernel.org/stable/c/ca17e7a532d1a55466cc007b3f4d319541a27493
- https://git.kernel.org/stable/c/e8123311cf06d7dae71e8c5fe78e0510d20cd30b
- https://git.kernel.org/stable/c/fa636e9ee4442215cd9a2e079cd5a8e1fe0cb8ba
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/49xxx/CVE-2022-49524.json
- https://nvd.nist.gov/vuln/detail/CVE-2022-49524
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced2bc46b3ad3c15165f91459b07ff8682478683194Fixed6041d1a0365baa729b6adfb6ed5386d9388018dbFixed7b9978e1c94e569d65a0e7e719abb9340f5db4a0Fixedfa636e9ee4442215cd9a2e079cd5a8e1fe0cb8baFixedca17e7a532d1a55466cc007b3f4d319541a27493Fixed98106f100f50c487469903b9cf6d966785fc9cc3Fixed86bd6a579c6c60547706cabf299cd2c9feab3332Fixed453514a874c78df1e7804e6e3aaa60c8d8deb6a8Fixede8123311cf06d7dae71e8c5fe78e0510d20cd30b