PT-2025-8313 · Linux+3 · Linux Kernel+3

Nathan Chancellor

Published

2022-06-03

Updated

2025-09-29

CVE-2022-49379

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A vulnerability in the Linux kernel has been resolved, related to the interaction between wait for device probe() and deferred probe timeout. The issue caused mounting NFS rootfs to time out when deferred probe timeout was non-zero. This was due to ip auto config() initcall timing out while waiting for network interfaces to appear. Although a commit tried to fix this by making wait for device probe() wait for deferred probe timeout to expire, it introduced a deadlock or blocked kernel init() from continuing until the timeout expired. The changes to wait for device probe() were reverted to resolve the issue.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Improper Locking

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-833CWE-667

Related Identifiers

ALSA-2025_16880

BDU:2026-03511

CVE-2022-49379

RHSA-2023:2458

RHSA-2023_2458

SUSE-SU-2025:1027-1

SUSE-SU-2025:1176-1

SUSE-SU-2025:1183-1

SUSE-SU-2025:1241-1

SUSE-SU-2025_1027-1

SUSE-SU-2025_1241-1

Affected Products

Astra Linux

Linux Kernel

Red Hat

Suse

PT-2025-8313 · Linux+3 · Linux Kernel+3

CVE-2022-49379

Weakness Enumeration

Related Identifiers

Affected Products

References · 1337