CVE-2022-49458

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.18.0-rc5-next-20220506-00033-g6cee8cab6089-dirty #419

Description A vulnerability has been resolved in the Linux kernel. The issue occurred when the msm drm uninit() function was called from the msm drm init() error path, which could lead to calling free irq() for an IRQ that was not requested before due to an earlier error. This resulted in a warning and a backtrace indicating an attempt to free an already-free IRQ. The vulnerability is related to the drm/msm module and affects the msm drm uninit() and msm drm bind() functions.

Recommendations To resolve the issue, update the Linux kernel to a version that includes the fix for this vulnerability. As a temporary workaround, consider disabling the msm drm uninit() function until a patch is available. Restrict access to the drm/msm module to minimize the risk of exploitation. Avoid using the free irq() function in the affected code path until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.