PT-2025-8340 · Linux+2 · Linux Kernel+2

Damien Le Moal

Published

2025-02-26

Updated

2025-04-14

CVE-2022-49406

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A potential deadlock situation has been identified in the Linux kernel, specifically in the blk ia range sysfs show() function. This issue arises when the queue sysfs lock is used while reading the value of a range attribute, creating a possible deadlock scenario with disk removal. The problem is signaled by lockdep with a splat when the device is removed.

Recommendations Remove the mutex lock() and mutex unlock() calls from the blk ia range sysfs show() function to resolve the potential deadlock situation.

Exploit

Fix

Improper Locking

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-667

Related Identifiers

CVE-2022-49406

SUSE-SU-2025:1176-1

SUSE-SU-2025:1241-1

SUSE-SU-2025_1241-1

Affected Products

Astra Linux

Linux Kernel

Suse

PT-2025-8340 · Linux+2 · Linux Kernel+2

CVE-2022-49406

Weakness Enumeration

Related Identifiers

Affected Products

References · 1299