CVE-2022-49259

MEDIUM EPSS 16.1%
Published Feb 26, 20251y ago · Modified Jun 17, 20261w ago
5.5 CVSS 3.1
Medium
Find Similar
Published Feb 26, 2025 1y ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: block: don't delete queue kobject before its children kobjects aren't supposed to be deleted before their child kobjects are deleted. Apparently this is usually benign; however, a WARN will be triggered if one of the child kobjects has a named attribute group: sysfs group 'modes' not found for kobject 'crypto' WARNING: CPU: 0 PID: 1 at fs/sysfs/group.c:278 sysfs_remove_group+0x72/0x80 ... Call Trace: sysfs_remove_groups+0x29/0x40 fs/sysfs/group.c:312 __kobject_del+0x20/0x80 lib/kobject.c:611 kobject_cleanup+0xa4/0x140 lib/kobject.c:696 kobject_release lib/kobject.c:736 [inline] kref_put include/linux/kref.h:65 [inline] kobject_put+0x53/0x70 lib/kobject.c:753 blk_crypto_sysfs_unregister+0x10/0x20 block/blk-crypto-sysfs.c:159 blk_unregister_queue+0xb0/0x110 block/blk-sysfs.c:962 del_gendisk+0x117/0x250 block/genhd.c:610 Fix this by moving the kobject_del() and the corresponding kobject_uevent() to the correct place.

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
16.1% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Affected Products 6

VendorProductVersionRange
linuxlinux_kernel*≥4.16  –  <4.19.238
linuxlinux_kernel*≥4.20  –  <5.4.189
linuxlinux_kernel*≥5.5  –  <5.10.110
linuxlinux_kernel*≥5.11  –  <5.15.33
linuxlinux_kernel*≥5.16  –  <5.16.19
linuxlinux_kernel*≥5.17  –  <5.17.2

References 7

  • git.kernel.org https://git.kernel.org/stable/c/0b5924a14d64487ebd51127b0358d06066ef5384
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/0f69288253e9fc7c495047720e523b9f1aba5712
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/3d7e32c8da45957326f56937e0471c686d1a7711
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/84fe3ca6e7910beb47ec13509d484f84fa2a41ad
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/b2001eb10f59363da930cdd6e086a2861986fa18
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/cf0cb8686e55d9c022944bc6ba9e19e832889e83
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/efaa0e969261e97c1fdd8e0338e5dd3ba5b9219c
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/0b5924a14d64487ebd51127b0358d06066ef5384
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/0f69288253e9fc7c495047720e523b9f1aba5712
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/3d7e32c8da45957326f56937e0471c686d1a7711
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/84fe3ca6e7910beb47ec13509d484f84fa2a41ad
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/b2001eb10f59363da930cdd6e086a2861986fa18
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/cf0cb8686e55d9c022944bc6ba9e19e832889e83
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/efaa0e969261e97c1fdd8e0338e5dd3ba5b9219c
    Patch