Linux · Linux Kernel · CVE-2022-48869
**Name of the Vulnerable Software and Affected Versions**
Linux kernel (affected versions not specified)
**Description**
A use-after-free bug has been identified in the gadgetfs driver of the Linux kernel, involving processes concurrently mounting and unmounting the gadgetfs filesystem. The bug occurs when `gadgetfs fill super()` and `gadgetfs kill sb()` are not properly synchronized, allowing `gadgetfs kill sb()` to deallocate `the device` while `gadgetfs fill super()` is still using it. This issue can cause a denial of service.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.