CVE-2022-49505

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.18-rc2

Description A use-after-free issue in the Linux kernel's NFC subsystem allows for potential exploitation. The nfc dev up() function does not properly check if the rfkill object is unregistered before use, leading to a possible crash or code execution. The issue is triggered when the device del(&dev->dev) function is called in nfc unregister device(), but the rfkill object is still dereferenced. Technical details include the nfc dev up() function and the rfkill blocked() function.

Recommendations For Linux kernel versions prior to 5.18-rc2, update to a version that includes the fix for this issue. As a temporary workaround, consider disabling the NFC subsystem until a patch is available. Restrict access to the nfc dev up() function to minimize the risk of exploitation. Avoid using the rfkill object in the affected NFC subsystem until the issue is resolved.