CVE-2022-49309

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A deadlock issue has been identified in the Linux kernel, specifically in the rtw surveydone event callback() function within the rtl8723bs driver. This occurs due to a lock being held by one thread while waiting for a timer to stop, and the timer handler in another thread also requiring the same lock. The deadlock happens because the function holds the pmlmepriv->lock while using del timer sync() to wait for the timer to stop, but the timer handler also needs this lock, causing the function to block indefinitely.

Recommendations To resolve this issue, apply the patch that extracts del timer sync() from the protection of spin lock bh(), allowing the timer handler to obtain the necessary lock. Additionally, replace spin lock bh() with spin lock irq() in the rtw scan timeout handler() function to prevent further deadlocks.