{"dataType":"CVE_RECORD","dataVersion":"5.2","cveMetadata":{"cveId":"CVE-2022-49524","assignerOrgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","state":"PUBLISHED","assignerShortName":"Linux","dateReserved":"2025-02-26T02:08:31.588Z","datePublished":"2025-02-26T02:13:48.222Z","dateUpdated":"2025-12-23T13:24:19.130Z"},"containers":{"cna":{"providerMetadata":{"orgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","shortName":"Linux","dateUpdated":"2025-12-23T13:24:19.130Z"},"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: pci: cx23885: Fix the error handling in cx23885_initdev()\n\nWhen the driver fails to call the dma_set_mask(), the driver will get\nthe following splat:\n\n[   55.853884] BUG: KASAN: use-after-free in __process_removed_driver+0x3c/0x240\n[   55.854486] Read of size 8 at addr ffff88810de60408 by task modprobe/590\n[   55.856822] Call Trace:\n[   55.860327]  __process_removed_driver+0x3c/0x240\n[   55.861347]  bus_for_each_dev+0x102/0x160\n[   55.861681]  i2c_del_driver+0x2f/0x50\n\nThis is because the driver has initialized the i2c related resources\nin cx23885_dev_setup() but not released them in error handling, fix this\nbug by modifying the error path that jumps after failing to call the\ndma_set_mask()."}],"affected":[{"product":"Linux","vendor":"Linux","defaultStatus":"unaffected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["drivers/media/pci/cx23885/cx23885-core.c"],"versions":[{"version":"2bc46b3ad3c15165f91459b07ff8682478683194","lessThan":"6041d1a0365baa729b6adfb6ed5386d9388018db","status":"affected","versionType":"git"},{"version":"2bc46b3ad3c15165f91459b07ff8682478683194","lessThan":"7b9978e1c94e569d65a0e7e719abb9340f5db4a0","status":"affected","versionType":"git"},{"version":"2bc46b3ad3c15165f91459b07ff8682478683194","lessThan":"fa636e9ee4442215cd9a2e079cd5a8e1fe0cb8ba","status":"affected","versionType":"git"},{"version":"2bc46b3ad3c15165f91459b07ff8682478683194","lessThan":"ca17e7a532d1a55466cc007b3f4d319541a27493","status":"affected","versionType":"git"},{"version":"2bc46b3ad3c15165f91459b07ff8682478683194","lessThan":"98106f100f50c487469903b9cf6d966785fc9cc3","status":"affected","versionType":"git"},{"version":"2bc46b3ad3c15165f91459b07ff8682478683194","lessThan":"86bd6a579c6c60547706cabf299cd2c9feab3332","status":"affected","versionType":"git"},{"version":"2bc46b3ad3c15165f91459b07ff8682478683194","lessThan":"453514a874c78df1e7804e6e3aaa60c8d8deb6a8","status":"affected","versionType":"git"},{"version":"2bc46b3ad3c15165f91459b07ff8682478683194","lessThan":"e8123311cf06d7dae71e8c5fe78e0510d20cd30b","status":"affected","versionType":"git"}]},{"product":"Linux","vendor":"Linux","defaultStatus":"affected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["drivers/media/pci/cx23885/cx23885-core.c"],"versions":[{"version":"4.8","status":"affected"},{"version":"0","lessThan":"4.8","status":"unaffected","versionType":"semver"},{"version":"4.14.283","lessThanOrEqual":"4.14.*","status":"unaffected","versionType":"semver"},{"version":"4.19.247","lessThanOrEqual":"4.19.*","status":"unaffected","versionType":"semver"},{"version":"5.4.198","lessThanOrEqual":"5.4.*","status":"unaffected","versionType":"semver"},{"version":"5.10.121","lessThanOrEqual":"5.10.*","status":"unaffected","versionType":"semver"},{"version":"5.15.46","lessThanOrEqual":"5.15.*","status":"unaffected","versionType":"semver"},{"version":"5.17.14","lessThanOrEqual":"5.17.*","status":"unaffected","versionType":"semver"},{"version":"5.18.3","lessThanOrEqual":"5.18.*","status":"unaffected","versionType":"semver"},{"version":"5.19","lessThanOrEqual":"*","status":"unaffected","versionType":"original_commit_for_fix"}]}],"cpeApplicability":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.8","versionEndExcluding":"4.14.283"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.8","versionEndExcluding":"4.19.247"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.8","versionEndExcluding":"5.4.198"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.8","versionEndExcluding":"5.10.121"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.8","versionEndExcluding":"5.15.46"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.8","versionEndExcluding":"5.17.14"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.8","versionEndExcluding":"5.18.3"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.8","versionEndExcluding":"5.19"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/6041d1a0365baa729b6adfb6ed5386d9388018db"},{"url":"https://git.kernel.org/stable/c/7b9978e1c94e569d65a0e7e719abb9340f5db4a0"},{"url":"https://git.kernel.org/stable/c/fa636e9ee4442215cd9a2e079cd5a8e1fe0cb8ba"},{"url":"https://git.kernel.org/stable/c/ca17e7a532d1a55466cc007b3f4d319541a27493"},{"url":"https://git.kernel.org/stable/c/98106f100f50c487469903b9cf6d966785fc9cc3"},{"url":"https://git.kernel.org/stable/c/86bd6a579c6c60547706cabf299cd2c9feab3332"},{"url":"https://git.kernel.org/stable/c/453514a874c78df1e7804e6e3aaa60c8d8deb6a8"},{"url":"https://git.kernel.org/stable/c/e8123311cf06d7dae71e8c5fe78e0510d20cd30b"}],"title":"media: pci: cx23885: Fix the error handling in cx23885_initdev()","x_generator":{"engine":"bippy-1.2.0"}},"adp":[{"metrics":[{"cvssV3_1":{"scope":"UNCHANGED","version":"3.1","baseScore":7.8,"attackVector":"LOCAL","baseSeverity":"HIGH","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","integrityImpact":"HIGH","userInteraction":"NONE","attackComplexity":"LOW","availabilityImpact":"HIGH","privilegesRequired":"LOW","confidentialityImpact":"HIGH"}},{"other":{"type":"ssvc","content":{"id":"CVE-2022-49524","role":"CISA Coordinator","options":[{"Exploitation":"none"},{"Automatable":"no"},{"Technical Impact":"total"}],"version":"2.0.3","timestamp":"2025-02-27T18:15:37.962378Z"}}}],"problemTypes":[{"descriptions":[{"lang":"en","type":"CWE","cweId":"CWE-416","description":"CWE-416 Use After Free"}]}],"title":"CISA ADP Vulnrichment","providerMetadata":{"orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP","dateUpdated":"2025-02-27T18:22:31.915Z"}}]}}