CVE-2022-49951 firmware_loader: Fix use-after-free during unregister

🗓️ 18 Jun 2025 11:00:14Reported by LinuxType

Fixed use-after-free vulnerability in kernel firmware loader during device unregister process.

Reporter	Title	Published	Views	Family All 257
AstraLinux	Astra Linux – Vulnerability in Linux 5.10	20 May 202605:53	–	astralinux
CNNVD	Linux kernel 安全漏洞	18 Jun 202500:00	–	cnnvd
CVE	CVE-2022-49951	18 Jun 202511:00	–	cve
Debian CVE	CVE-2022-49951	18 Jun 202511:00	–	debiancve
EUVD	EUVD-2022-55233	3 Oct 202520:07	–	euvd
NVD	CVE-2022-49951	18 Jun 202511:15	–	nvd
OpenVAS	SUSE: Security Advisory (SUSE-SU-2025:02264-1)	15 Jul 202500:00	–	openvas
OSV	CVE-2022-49951 firmware_loader: Fix use-after-free during unregister	18 Jun 202511:00	–	osv
OSV	DEBIAN-CVE-2022-49951	18 Jun 202511:15	–	osv
OSV	RHSA-2023:2458 Red Hat Security Advisory: kernel security, bug fix, and enhancement update	16 Sep 202409:02	–	osv

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "drivers/base/firmware_loader/sysfs_upload.c"
    ],
    "versions": [
      {
        "version": "97730bbb242cde22b7140acd202ffd88823886c9",
        "lessThan": "d380d40930a674c520a5b55f3be1eb17dc634ebc",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "97730bbb242cde22b7140acd202ffd88823886c9",
        "lessThan": "8b40c38e37492b5bdf8e95b46b5cca9517a9957a",
        "status": "affected",
        "versionType": "git"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "affected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "drivers/base/firmware_loader/sysfs_upload.c"
    ],
    "versions": [
      {
        "version": "5.19",
        "status": "affected"
      },
      {
        "version": "0",
        "lessThan": "5.19",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "5.19.8",
        "lessThanOrEqual": "5.19.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.0",
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "versionType": "original_commit_for_fix"
      }
    ]
  }
]

Source	Link
git	www.git.kernel.org/stable/c/d380d40930a674c520a5b55f3be1eb17dc634ebc
git	www.git.kernel.org/stable/c/8b40c38e37492b5bdf8e95b46b5cca9517a9957a

11 May 2026 19:09Current

EPSS0.00207

kernel vulnerability firmware loader use-after-free device unregister fix