PT-2025-8048 · Linux+2 · Linux Kernel+2

Damien Le Moal

Published

2022-02-22

Updated

2025-04-16

CVE-2022-49120

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A task leak issue in the Linux kernel has been resolved. The problem occurred in the pm8001 send abort all() function, where allocated SAS tasks were not properly freed if pm8001 tag alloc() or pm8001 mpi build cmd() failed.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Improper Resource Release

Allocation of Resources Without Limits

Missing Release of Resource after Effective Lifetime

Resource Exhaustion

Memory Leak

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-404CWE-770CWE-772CWE-400CWE-401

Related Identifiers

BDU:2026-01547

CVE-2022-49120

SUSE-SU-2025:1027-1

SUSE-SU-2025:1176-1

SUSE-SU-2025:1183-1

SUSE-SU-2025:1241-1

SUSE-SU-2025:1293-1

SUSE-SU-2025_1027-1

SUSE-SU-2025_1241-1

SUSE-SU-2025_1293-1

Affected Products

Astra Linux

Linux Kernel

Suse

PT-2025-8048 · Linux+2 · Linux Kernel+2

CVE-2022-49120

Weakness Enumeration

Related Identifiers

Affected Products

References · 1486