#VU104421 Use-after-free in Linux kernel - CVE-2022-49433

Cybersecurity Help s.r.o.

Published: 2025-02-26

Vulnerability identifier: #VU104421

Vulnerability risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-49433

CWE-ID: CWE-416

Exploitation vector: Local

Exploit availability: No

Vulnerable software:
Linux kernel
Operating systems & Components / Operating system

Vendor: Linux Foundation

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the sdma_clean() function in drivers/infiniband/hw/hfi1/sdma.c. A local user can escalate privileges on the system.

Mitigation
Install update from vendor's website.

Vulnerable software versions

Linux kernel: All versions

External links
https://git.kernel.org/stable/c/05c03dfd09c069c4ffd783b47b2da5dcc9421f2c
https://git.kernel.org/stable/c/288d198f50434f29b4a26a9de4394ae2305ad8af
https://git.kernel.org/stable/c/30eb275e7ed588270ae159cc590a96658e0cfd8f
https://git.kernel.org/stable/c/66090815a24ce14cf51ef5453fc0218fe8a39bc2
https://git.kernel.org/stable/c/addb192000d8819c0b1553453994df9bb54c28db
https://git.kernel.org/stable/c/ca55150bff5817af4f857a746ecab9862c23e12a
https://git.kernel.org/stable/c/fc0750e659db7b315bf6348902cc8ca3cdd4b8d8

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

SUSE update for the Linux Kernel

openEuler 20.03 LTS SP4 update for kernel

Use-after-free in Linux kernel hw hfi1 driver