PT-2025-26075 · Linux+4 · Linux Kernel+4

Published

2022-06-22

Updated

2025-08-18

CVE-2022-50149

CVSS v2.0

6.0

Medium

Vector

AV:L/AC:H/Au:S/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A potential deadlock issue has been identified in the Linux kernel, specifically in the driver attach function. This issue arises when asynchronous probing is allowed, and due to out-of-memory or work limit conditions, synchronous execution is performed instead, leading to an A-A deadlock because driver attach async helper attempts to acquire the dev lock. The deadlock can be reproduced by making the condition if (!entry || atomic read(&entry count) > MAX WORK) untenable.

Recommendations To fix the deadlock, move the async schedule dev call outside the device lock, as the system unbound wq parameter in async schedule node domain can accept concurrent operations without changing the code logic or leading to a deadlock.

Note: Since the affected versions are not explicitly specified, the recommendation applies generally to the Linux kernel.

Exploit

Fix

Improper Locking

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-833CWE-667

Related Identifiers

BDU:2026-03179

CESA-2023_2951

CVE-2022-50149

RHSA-2023:2458

RHSA-2023:2951

RHSA-2023_2458

RHSA-2023_2951

SUSE-SU-2025:02264-1

SUSE-SU-2025:02308-1

SUSE-SU-2025:02320-1

SUSE-SU-2025:02321-1

SUSE-SU-2025:02322-1

SUSE-SU-2025:02537-1

SUSE-SU-2025:02846-1

SUSE-SU-2025:2264-1

SUSE-SU-2025_02264-1

SUSE-SU-2025_02308-1

SUSE-SU-2025_02537-1

SUSE-SU-2025_02846-1

Affected Products

Astra Linux

Centos

Linux Kernel

Red Hat

Suse

PT-2025-26075 · Linux+4 · Linux Kernel+4

CVE-2022-50149

Weakness Enumeration

Related Identifiers

Affected Products

References · 754