PT-2025-8426 · Linux+2 · Linux Kernel+2

Lin Ma

Published

2022-05-16

Updated

2025-09-03

CVE-2022-49493

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A logic error in the Linux kernel's ASoC rt5645 device removal process can lead to a potential use-after-free issue. The error occurs because the rt5645 i2c remove() function cancels the &rt5645->jack detect work before deleting the &rt5645->btn check timer. However, the timer handler rt5645 btn check callback() can re-queue the jack detect work, causing the canceled work to be rescheduled and potentially leading to a use-after-free scenario when del timer sync is run concurrently with rt5645 btn check callback.

Recommendations To resolve this issue, apply the patch that fixes the cleanup order by placing the del timer sync function before the cancel delayed work sync in the rt5645 i2c remove() function.

Exploit

Fix

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-416

Related Identifiers

BDU:2025-04425

CVE-2022-49493

OESA-2025-1447

OPENSUSE-SU-2025_1263-1

SUSE-SU-2025:1027-1

SUSE-SU-2025:1176-1

SUSE-SU-2025:1183-1

SUSE-SU-2025:1194-1

SUSE-SU-2025:1241-1

SUSE-SU-2025:1263-1

SUSE-SU-2025_1027-1

SUSE-SU-2025_1241-1

SUSE-SU-2025_1263-1

Affected Products

Astra Linux

Linux Kernel

Suse

PT-2025-8426 · Linux+2 · Linux Kernel+2

CVE-2022-49493

Weakness Enumeration

Related Identifiers

Affected Products

References · 1363