CVE-2022-49694

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A use after free issue has been resolved in the Linux kernel. The problem occurred because the elevator was being disabled and the scheduler tags were being freed in the wrong order, potentially leading to a use after free on q->tag set from disk release, as the tag set might not be alive at that point. The fix involves moving the disabling of the elevator and freeing of the scheduler tags to the end of del gendisk, as well as moving the blk qos exit call.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.