CVE-2022-49980

🗓️ 18 Jun 2025 11:00:42Reported by LinuxType

Linux kernel CVE-2022-49980 fixes use-after-free vulnerability in USB gadget driver handling.

Reporter	Title	Published	Views	Family All 273
Circl	CVE-2022-49980	3 Dec 202514:14	–	circl
CNNVD	Linux kernel 安全漏洞	18 Jun 202500:00	–	cnnvd
Cvelist	CVE-2022-49980 USB: gadget: Fix use-after-free Read in usb_udc_uevent()	18 Jun 202511:00	–	cvelist
Debian CVE	CVE-2022-49980	18 Jun 202511:00	–	debiancve
EUVD	EUVD-2022-55260	3 Oct 202520:07	–	euvd
Microsoft CVE	USB: gadget: Fix use-after-free Read in usb_udc_uevent()	16 Nov 202501:01	–	mscve
NVD	CVE-2022-49980	18 Jun 202511:15	–	nvd
OpenVAS	SUSE: Security Advisory (SUSE-SU-2025:02264-1)	15 Jul 202500:00	–	openvas
OpenVAS	SUSE: Security Advisory (SUSE-SU-2025:03204-1)	15 Sep 202500:00	–	openvas
OpenVAS	SUSE: Security Advisory (SUSE-SU-2025:03344-1)	25 Sep 202500:00	–	openvas

NVD

Vulners

CNA

Node

linux linux_kernelRange<5.19.7

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "drivers/usb/gadget/udc/core.c"
    ],
    "versions": [
      {
        "version": "2ccea03a8f7ec93641791f2760d7cdc6cab6205f",
        "lessThan": "f44b0b95d50fffeca036e1ba36770390e0b519dd",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "2ccea03a8f7ec93641791f2760d7cdc6cab6205f",
        "lessThan": "2191c00855b03aa59c20e698be713d952d51fc18",
        "status": "affected",
        "versionType": "git"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "affected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "drivers/usb/gadget/udc/core.c"
    ],
    "versions": [
      {
        "version": "3.1",
        "status": "affected"
      },
      {
        "version": "0",
        "lessThan": "3.1",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "5.19.7",
        "lessThanOrEqual": "5.19.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.0",
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "versionType": "original_commit_for_fix"
      }
    ]
  }
]

Source	Link
git	www.git.kernel.org/stable/c/2191c00855b03aa59c20e698be713d952d51fc18
git	www.git.kernel.org/stable/c/f44b0b95d50fffeca036e1ba36770390e0b519dd

11 May 2026 19:10Current

6.5Medium risk

Vulners AI Score6.5

CVSS 3.17.8

EPSS0.00063

CWE-416

cve identifier linux kernel vulnerability usb gadget driver use-after-free fix