PT-2025-8558 · Linux+4 · Linux Kernel+4

Ma Yuying

Published

2022-07-14

Updated

2025-06-17

CVE-2022-49625

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.14.0-119.el9.x86 64

Description A kernel panic can occur in the Linux kernel when creating Virtual Functions (VFs) due to a bug in the efx ef10 try update nic stats vf function. This happens when releasing a DMA coherent buffer and unmapping memory with vunmap in an IRQ context or with BH disabled, causing a crash. The issue is triggered by the BUG ON(in interrupt()) line in vunmap. Log messages indicate a kernel BUG at mm/vmalloc.c:2727 with an invalid opcode.

Recommendations For Linux kernel version 5.14.0-119.el9.x86 64 and earlier, apply the patch that reenables BH to release the buffer, fixing the kernel panic issue when creating VFs.

Exploit

Fix

Improper Resource Release

NULL Pointer Dereference

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-404CWE-476

Related Identifiers

BDU:2026-03902

CESA-2022_7683

CVE-2022-49625

OESA-2025-1336

RHSA-2022:7683

RHSA-2022:8267

RHSA-2022_7683

RHSA-2022_8267

SUSE-SU-2025:01983-1

SUSE-SU-2025:1027-1

SUSE-SU-2025:1176-1

SUSE-SU-2025:1183-1

SUSE-SU-2025:1241-1

SUSE-SU-2025_01983-1

SUSE-SU-2025_1027-1

SUSE-SU-2025_1241-1

Affected Products

Astra Linux

Centos

Linux Kernel

Red Hat

Suse

PT-2025-8558 · Linux+4 · Linux Kernel+4

CVE-2022-49625

Weakness Enumeration

Related Identifiers

Affected Products

References · 1658