PT-2025-8654 · Linux+3 · Linux Kernel+3

Published

2022-06-15

Updated

2025-04-14

CVE-2022-49721

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.19.0-rc2-00002-g4d9ead8b45ce

Description The issue arises from inconsistent handling of PLT entries in the Linux kernel's ftrace functionality. Specifically, the ftrace modify call() function does not handle PLT entries correctly, leading to potential internal ftrace errors or kernel panics. This can occur when ftrace modify call() is used for a callsite that requires a PLT entry for a trampoline. The estimated number of potentially affected devices is not provided.

Recommendations For Linux kernel versions prior to 5.19.0-00002-g4d9ead8b45ce, consider updating to a newer version that includes the fix for consistently handling PLT entries. As a temporary workaround, avoid using the ftrace modify call() function for callsites that require a PLT entry for a trampoline.

Exploit

Fix

Improper Resource Release

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-404

Related Identifiers

BDU:2026-03710

CVE-2022-49721

RHSA-2024:2394

RHSA-2024_2394

SUSE-SU-2025:1027-1

SUSE-SU-2025:1176-1

SUSE-SU-2025:1183-1

SUSE-SU-2025:1241-1

SUSE-SU-2025_1027-1

SUSE-SU-2025_1241-1

Affected Products

Astra Linux

Linux Kernel

Red Hat

Suse

PT-2025-8654 · Linux+3 · Linux Kernel+3

CVE-2022-49721

Weakness Enumeration

Related Identifiers

Affected Products

References · 1335