PT-2025-8083 · Linux+2 · Linux Kernel+2

Published

2022-01-24

Updated

2025-04-16

CVE-2022-49155

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel version 5.14.0-29.el9.x86 64

Description A vulnerability has been resolved in the Linux kernel, specifically in the qla2xxx module. The issue is related to the use of smp processor id() in preemptible code, which can cause a kernel complaint. The vulnerability is identified by a bug report that includes a call trace, indicating the problem occurs in the qla2xxx create qpair() function.

Recommendations To resolve the issue, update the Linux kernel to a version that includes the fix for the vulnerability. As a temporary workaround, consider disabling the qla2xxx module until a patched version is available.

Exploit

Fix

Stack Overflow

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-121CWE-119

Related Identifiers

BDU:2026-01543

CVE-2022-49155

OESA-2025-1317

OPENSUSE-SU-2025_1263-1

SUSE-SU-2025:1027-1

SUSE-SU-2025:1176-1

SUSE-SU-2025:1183-1

SUSE-SU-2025:1194-1

SUSE-SU-2025:1241-1

SUSE-SU-2025:1263-1

SUSE-SU-2025:1293-1

SUSE-SU-2025_1027-1

SUSE-SU-2025_1241-1

SUSE-SU-2025_1263-1

SUSE-SU-2025_1293-1

Affected Products

Astra Linux

Linux Kernel

Suse

PT-2025-8083 · Linux+2 · Linux Kernel+2

CVE-2022-49155

Weakness Enumeration

Related Identifiers

Affected Products

References · 1533