CVE-2022-49555 Bluetooth: hci_qca: Use del_timer_sync() before freeing

🗓️ 26 Feb 2025 02:14:03Reported by LinuxType

Vulnerability CVE-2022-49555 in Linux kernel fixed to prevent timer corruption in Bluetooth driver.

Reporter	Title	Published	Views	Family All 49
AstraLinux	Astra Linux - уязвимость в linux-5.10	20 May 202605:53	–	astralinux
Circl	CVE-2022-49555	3 Dec 202514:14	–	circl
CNNVD	Linux kernel 安全漏洞	26 Feb 202500:00	–	cnnvd
CVE	CVE-2022-49555	26 Feb 202502:14	–	cve
Debian CVE	CVE-2022-49555	26 Feb 202502:14	–	debiancve
EUVD	EUVD-2022-54677	22 Oct 202518:30	–	euvd
NVD	CVE-2022-49555	26 Feb 202507:01	–	nvd
OpenVAS	SUSE: Security Advisory (SUSE-SU-2025:1293-1)	18 Apr 202500:00	–	openvas
OSV	CVE-2022-49555 Bluetooth: hci_qca: Use del_timer_sync() before freeing	26 Feb 202502:14	–	osv
OSV	DEBIAN-CVE-2022-49555	26 Feb 202507:01	–	osv

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "drivers/bluetooth/hci_qca.c"
    ],
    "versions": [
      {
        "version": "0ff252c1976da5d80db1377eb39b551931e61826",
        "lessThan": "4989bb03342941f2b730b37dfa38bce27b543661",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "0ff252c1976da5d80db1377eb39b551931e61826",
        "lessThan": "db03727b4bbbbb36e6ef4cb655c670eefb6448e9",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "0ff252c1976da5d80db1377eb39b551931e61826",
        "lessThan": "37d17f63d085d601011964ade7371aeebeb6ed4b",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "0ff252c1976da5d80db1377eb39b551931e61826",
        "lessThan": "2717654ae022e6ea959a4b7b762702fe1a4690c2",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "0ff252c1976da5d80db1377eb39b551931e61826",
        "lessThan": "72ef98445aca568a81c2da050532500a8345ad3a",
        "status": "affected",
        "versionType": "git"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "affected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "drivers/bluetooth/hci_qca.c"
    ],
    "versions": [
      {
        "version": "4.3",
        "status": "affected"
      },
      {
        "version": "0",
        "lessThan": "4.3",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "5.10.120",
        "lessThanOrEqual": "5.10.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "5.15.45",
        "lessThanOrEqual": "5.15.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "5.17.13",
        "lessThanOrEqual": "5.17.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "5.18.2",
        "lessThanOrEqual": "5.18.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "5.19",
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "versionType": "original_commit_for_fix"
      }
    ]
  }
]

Source	Link
git	www.git.kernel.org/stable/c/2717654ae022e6ea959a4b7b762702fe1a4690c2
git	www.git.kernel.org/stable/c/db03727b4bbbbb36e6ef4cb655c670eefb6448e9
git	www.git.kernel.org/stable/c/72ef98445aca568a81c2da050532500a8345ad3a
git	www.git.kernel.org/stable/c/4989bb03342941f2b730b37dfa38bce27b543661
git	www.git.kernel.org/stable/c/37d17f63d085d601011964ade7371aeebeb6ed4b

11 May 2026 19:02Current

EPSS0.00146

cve-2022-49555 linux kernel bluetooth vulnerability timer corruption hci_qca driver del_timer_sync