PT-2025-8456 · Linux+2 · Linux Kernel+2

Hari Chandrakanthan

Published

2022-04-27

Updated

2025-04-14

CVE-2022-49523

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A crash is observed in the Linux kernel when ath11k modules are removed using rmmod with spectral scan enabled. The crash occurs due to a NULL pointer dereference. To avoid this crash, a spectral scan disable WMI command is sent to the firmware before cleaning the spectral dbring in the spectral deinit API.

Recommendations As a temporary workaround, consider disabling the spectral scan feature until a patch is available. To resolve the issue, send a spectral scan disable WMI command to the firmware before cleaning the spectral dbring in the spectral deinit API.

Exploit

Fix

NULL Pointer Dereference

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-476

Related Identifiers

BDU:2026-02619

CVE-2022-49523

SUSE-SU-2025:1027-1

SUSE-SU-2025:1176-1

SUSE-SU-2025:1183-1

SUSE-SU-2025:1241-1

SUSE-SU-2025_1027-1

SUSE-SU-2025_1241-1

Affected Products

Astra Linux

Linux Kernel

Suse

PT-2025-8456 · Linux+2 · Linux Kernel+2

CVE-2022-49523

Weakness Enumeration

Related Identifiers

Affected Products

References · 1336