CVE-2022-49685

HIGH EPSS 16.6%
Published Feb 26, 20251y ago · Modified Jun 17, 20261w ago
7.8 CVSS 3.1
High
Find Similar
Published Feb 26, 2025 1y ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: iio: trigger: sysfs: fix use-after-free on remove Ensure that the irq_work has completed before the trigger is freed. ================================================================== BUG: KASAN: use-after-free in irq_work_run_list Read of size 8 at addr 0000000064702248 by task python3/25 Call Trace: irq_work_run_list irq_work_tick update_process_times tick_sched_handle tick_sched_timer __hrtimer_run_queues hrtimer_interrupt Allocated by task 25: kmem_cache_alloc_trace iio_sysfs_trig_add dev_attr_store sysfs_kf_write kernfs_fop_write_iter new_sync_write vfs_write ksys_write sys_write Freed by task 25: kfree iio_sysfs_trig_remove dev_attr_store sysfs_kf_write kernfs_fop_write_iter new_sync_write vfs_write ksys_write sys_write ==================================================================

CVSS Details

Base Score
7.8
Exploitability
1.8
Impact
5.9
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality High
Integrity High
Availability High

Threat Intelligence

EPSS Exploit Probability
16.6% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-416 Use After Free Memory Safety

Affected Products 10

VendorProductVersionRange
linuxlinux_kernel*≥3.7  –  <4.9.321
linuxlinux_kernel*≥4.10  –  <4.14.286
linuxlinux_kernel*≥4.15  –  <4.19.250
linuxlinux_kernel*≥4.20  –  <5.4.202
linuxlinux_kernel*≥5.5  –  <5.10.127
linuxlinux_kernel*≥5.11  –  <5.15.51
linuxlinux_kernel*≥5.16  –  <5.18.8
linuxlinux_kernel5.19any
linuxlinux_kernel5.19any
linuxlinux_kernel5.19any

References 8

  • git.kernel.org https://git.kernel.org/stable/c/31ff3309b47d98313c61b8301bf595820cc3cc33
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/4687c3f955240ca2a576bdc3f742d4d915b6272d
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/4ef1e521be610b720daeb7cf899fedc7db0274c4
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/5e39397d60dacc7f5d81d442c1c958eaaaf31128
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/78601726d4a59a291acc5a52da1d3a0a6831e4e8
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/b07a30a774b3c3e584a68dc91779c68ea2da4813
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/d6111e7bdb8ec27eb43d01c4cd4ff1620a75f7f2
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/fd5d8fb298a2866c337da635c79d63c3afabcaf7
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/31ff3309b47d98313c61b8301bf595820cc3cc33
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/4687c3f955240ca2a576bdc3f742d4d915b6272d
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/4ef1e521be610b720daeb7cf899fedc7db0274c4
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/5e39397d60dacc7f5d81d442c1c958eaaaf31128
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/78601726d4a59a291acc5a52da1d3a0a6831e4e8
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/b07a30a774b3c3e584a68dc91779c68ea2da4813
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/d6111e7bdb8ec27eb43d01c4cd4ff1620a75f7f2
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/fd5d8fb298a2866c337da635c79d63c3afabcaf7
    Patch