PT-2025-8086 · Linux+5 · Linux Kernel+5

Abdul Haleem

Published

2022-01-01

Updated

2026-03-14

CVE-2022-49158

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.13.0-rc1-autotest #1

Description A warning message issue in the Linux kernel has been resolved. The problem occurred due to adisc being flushed, resulting in a warning message where a different error code type did not match the expected type. The issue was triggered in the qla2xxx driver.

Recommendations For Linux kernel versions prior to 5.13.0-rc1-autotest #1, update to a newer version to resolve the issue. As a temporary workaround, consider disabling the qla2xxx driver until a patch is available. Restrict access to the vulnerable qla2x00 async adisc sp done function to minimize the risk of exploitation. Avoid using the affected API endpoints related to the qla2xxx driver until the issue is resolved.

Exploit

Fix

Assertion Failure

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-617

Related Identifiers

ALSA-2025_16880

BDU:2026-01545

CESA-2022_7683

CVE-2022-49158

OPENSUSE-SU-2025_1263-1

RHSA-2022:7683

RHSA-2022:8267

RHSA-2022_7683

RHSA-2022_8267

SUSE-SU-2025:1027-1

SUSE-SU-2025:1176-1

SUSE-SU-2025:1183-1

SUSE-SU-2025:1194-1

SUSE-SU-2025:1241-1

SUSE-SU-2025:1263-1

SUSE-SU-2025:1293-1

SUSE-SU-2025_1027-1

SUSE-SU-2025_1241-1

SUSE-SU-2025_1263-1

SUSE-SU-2025_1293-1

Affected Products

Astra Linux

Centos

Debian

Linux Kernel

Red Hat

Suse

PT-2025-8086 · Linux+5 · Linux Kernel+5

CVE-2022-49158

Weakness Enumeration

Related Identifiers

Affected Products

References · 1500