Linux · Linux Kernel · CVE-2022-49538
**Name of the Vulnerable Software and Affected Versions**
Linux kernel (affected versions not specified)
**Description**
A issue in the Linux kernel has been identified where the input dev can be unregistered while calling snd jack report when using ASoC, leading to a NULL pointer dereference. This occurs due to lack of serialization in access to input dev.
**Recommendations**
To resolve this issue, apply a patch that implements a mutex lock to serialize access to input dev, preventing the NULL pointer dereference.