PT-2025-8219 · Linux+3 · Linux Kernel+3

Hu Jiahui

Published

2022-03-22

Updated

2026-02-04

CVE-2022-49291

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The issue is related to the Advanced Linux Sound Architecture (ALSA) in the Linux kernel, where concurrent calls to hw params and hw free ioctls can result in a use-after-free (UAF) condition due to the lack of proper checks or protection. This is because the existing PCM stream lock cannot protect the entire ioctl operation. To address this, a new mutex called runtime->buffer mutex has been introduced to protect these concurrent calls.

Recommendations For the affected Linux kernel versions, applying the patch that introduces the runtime->buffer mutex and modifies the hw params and hw free ioctl code paths is recommended. This involves updating the kernel with the fix that includes the new mutex and the modified functions for code simplicity.

Exploit

Fix

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-416

Related Identifiers

ALSA-2025_16880

BDU:2025-10268

CVE-2022-49291

OPENSUSE-SU-2025_1263-1

RHSA-2022:8267

RHSA-2022_8267

RHSA-2024:4107

SUSE-SU-2025:0983-1

SUSE-SU-2025:1027-1

SUSE-SU-2025:1176-1

SUSE-SU-2025:1183-1

SUSE-SU-2025:1194-1

SUSE-SU-2025:1241-1

SUSE-SU-2025:1263-1

SUSE-SU-2025:1293-1

SUSE-SU-2025_0983-1

SUSE-SU-2025_1027-1

SUSE-SU-2025_1241-1

SUSE-SU-2025_1263-1

SUSE-SU-2025_1293-1

SUSE-SU-2026:0385-1

Affected Products

Astra Linux

Linux Kernel

Red Hat

Suse

PT-2025-8219 · Linux+3 · Linux Kernel+3

CVE-2022-49291

Weakness Enumeration

Related Identifiers

Affected Products

References · 1511