CVE-2022-49519

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A double free crash is observed in the Linux kernel when a firmware recovery, caused by a WMI timeout or crash, is followed by an immediate suspend event. This issue occurs because the ath10k halt() function is called twice, once during the firmware recovery and again during the suspend event, leading to a crash. The ath10k stop() function triggers ath10k halt() during the suspend event, and if the driver is in the ATH10K STATE RESTARTING state, the ath10k wait for suspend() function is skipped. To fix this issue, the ath10k halt() call is skipped in ath10k stop() when the driver is in the ATH10K STATE RESTARTING state, and ath10k wait for suspend() is called instead.

Recommendations To resolve this issue, update the Linux kernel to a version that includes the fix, which skips the ath10k halt() call in ath10k stop() when the driver is in the ATH10K STATE RESTARTING state and calls ath10k wait for suspend() instead. At the moment, there is no information about a newer version that contains a fix for this vulnerability.