CVE-2022-49711

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.15

Description A use-after-free issue was found in the Linux kernel, specifically in the fsl-mc-bus component. The problem occurs when mc->root mc bus dev is freed in fsl mc device remove(), but its mc io is still referenced and passed to fsl destroy mc io() in fsl mc bus remove(). This triggers a KASAN use-after-free error. The issue can be resolved by keeping a local reference to mc->root mc bus dev->mc io and passing it to fsl destroy mc io().

Recommendations For Linux kernel versions prior to 5.15, as a temporary workaround, consider modifying the fsl mc bus remove() function to keep a local reference to mc->root mc bus dev->mc io before passing it to fsl destroy mc io(). However, this patch may require rework to apply to kernels older than v5.15. At the moment, there is no information about a newer version that contains a fix for this vulnerability.