CVE-2022-49555

Bluetooth: hci_qca: Use del_timer_sync() before freeing

Description

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_qca: Use del_timer_sync() before freeing While looking at a crash report on a timer list being corrupted, which usually happens when a timer is freed while still active. This is commonly triggered by code calling del_timer() instead of del_timer_sync() just before freeing. One possible culprit is the hci_qca driver, which does exactly that. Eric mentioned that wake_retrans_timer could be rearmed via the work queue, so also move the destruction of the work queue before del_timer_sync().

N/A
CVSS
Severity:
EPSS 0.03%
Affected: Linux Linux
Affected: Linux Linux
Published at:
Updated at:

References

Link Tags
https://git.kernel.org/stable/c/4989bb03342941f2b730b37dfa38bce27b543661
https://git.kernel.org/stable/c/db03727b4bbbbb36e6ef4cb655c670eefb6448e9
https://git.kernel.org/stable/c/37d17f63d085d601011964ade7371aeebeb6ed4b
https://git.kernel.org/stable/c/2717654ae022e6ea959a4b7b762702fe1a4690c2
https://git.kernel.org/stable/c/72ef98445aca568a81c2da050532500a8345ad3a

Frequently Asked Questions

What is the severity of CVE-2022-49555?
CVE-2022-49555 has not yet been assigned a CVSS score.
How to fix CVE-2022-49555?
To fix CVE-2022-49555, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2022-49555 being actively exploited in the wild?
As for now, there are no information to confirm that CVE-2022-49555 is being actively exploited. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2022-49555?
CVE-2022-49555 affects Linux Linux, Linux Linux.
This platform uses data from the NIST NVD, MITRE CVE, MITRE CWE, First.org and CISA KEV but is not endorsed or certified by these entities. CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site.
© 2025 Under My Watch. All Rights Reserved.