PT-2025-8124 · Linux+3 · Linux Kernel+3

David Dai

Published

2022-01-01

Updated

2026-03-14

CVE-2022-49196

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A use-after-free issue has been identified in the Linux kernel, specifically in the remove phb dynamic() function. This issue occurs when the device unregister() function is called, potentially freeing the phb resource while it is still being used. This can lead to a crash, particularly when slub debug and page poison are enabled. The issue is related to the release resource() function and the remove phb dynamic() function.

Recommendations To resolve this issue, take a reference to the host bridge->dev until the phb is no longer in use. Then, when the reference is dropped, the phb will be freed, preventing the use-after-free issue. As a temporary workaround, consider restricting access to the vulnerable remove phb dynamic() function until a patch is available.

Exploit

Fix

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-416

Related Identifiers

CVE-2022-49196

OPENSUSE-SU-2025_1263-1

SUSE-SU-2025:1027-1

SUSE-SU-2025:1176-1

SUSE-SU-2025:1183-1

SUSE-SU-2025:1194-1

SUSE-SU-2025:1241-1

SUSE-SU-2025:1263-1

SUSE-SU-2025:1293-1

SUSE-SU-2025_1027-1

SUSE-SU-2025_1241-1

SUSE-SU-2025_1263-1

SUSE-SU-2025_1293-1

Affected Products

Astra Linux

Debian

Linux Kernel

Suse

PT-2025-8124 · Linux+3 · Linux Kernel+3

CVE-2022-49196

Weakness Enumeration

Related Identifiers

Affected Products

References · 1493