PT-2025-8056 · Linux+3 · Linux Kernel+3

Published

2022-01-01

Updated

2026-03-14

CVE-2022-49128

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A issue in the Linux kernel has been identified where the pm runtime get sync() function increases the runtime PM counter even when it returns an error, potentially leading to a refcount leak. This is addressed by replacing pm runtime get sync() with pm runtime resume and get(), which does not alter the runtime PM counter in case of an error. Additionally, a matching decrement is necessary on the error handling path to maintain counter balance.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-402

Related Identifiers

BDU:2026-01463

CVE-2022-49128

SUSE-SU-2025:1027-1

SUSE-SU-2025:1176-1

SUSE-SU-2025:1183-1

SUSE-SU-2025:1241-1

SUSE-SU-2025_1027-1

SUSE-SU-2025_1241-1

Affected Products

Astra Linux

Debian

Linux Kernel

Suse

PT-2025-8056 · Linux+3 · Linux Kernel+3

CVE-2022-49128

Weakness Enumeration

Related Identifiers

Affected Products

References · 1334