CVE-2022-49954

syzbot is reporting hung task at __inputunregisterdevice() [1], for iforce_close() waiting at waiteventinterruptible() with dev->mutex held is blocking inputdisconnectdevice() from __inputunregisterdevice().

It seems that the cause is simply that commit c2b27ef672992a20 ("Input: iforce - wait for command completion when closing the device") forgot to call wakeup() after clearbit().

Fix this problem by introducing a helper that calls clearbit() followed by wakeup_all().

Database specific

{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/49xxx/CVE-2022-49954.json",
    "cna_assigner": "Linux"
}

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

c2b27ef672992a206e5b221b8676972dd840ffa5

Fixed

d186c65599bff0222da37b9215784ddfe39f9e1b

Fixed

b271090eea3899399e2adcf79c9c95367d472b03

Fixed

df1b53bc799d58f79701c465505a206c72ad4ab8

Fixed

b533b9d3a0d1327cbb31c201dc8dbbf98c8bfe3c

Fixed

98e01215708b6d416345465c09dce2bd4868c67a

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-49954.json"

Linux / Kernel

Package

Name: Kernel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

2.6.33

Fixed

5.4.213

Type: ECOSYSTEM
Events: Introduced

5.5.0

Fixed

5.10.142

Type: ECOSYSTEM
Events: Introduced

5.11.0

Fixed

5.15.66

Type: ECOSYSTEM
Events: Introduced

5.16.0

Fixed

5.19.8

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-49954.json"