Use-after-free in Linux kernel base driver



| Updated: 2025-05-11
Risk Low
Patch available YES
Number of vulnerabilities 1
CVE-ID CVE-2022-49385
CWE-ID CWE-416
Exploitation vector Local
Public exploit N/A
Vulnerable software
 Linux kernel
Operating systems & Components / Operating system

Vendor Linux Foundation

Security Bulletin

This security bulletin contains one low risk vulnerability.

1) Use-after-free

EUVDB-ID: #VU104431

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-49385

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the bus_add_driver() function in drivers/base/bus.c. A local user can escalate privileges on the system.

Mitigation

Install update from vendor's website.

Vulnerable software versions

Linux kernel: 5.15 - 5.15.46

CPE2.3 External links

https://git.kernel.org/stable/c/310862e574001a97ad02272bac0fd13f75f42a27
https://git.kernel.org/stable/c/5389101257828d1913d713d9a40acbe14f5961df
https://git.kernel.org/stable/c/5d709f58c743166fe1c6914b9de0ae8868600d9b
https://git.kernel.org/stable/c/823f24f2e329babd0330200d0b74882516fe57f4
https://git.kernel.org/stable/c/c059665c84feab46b7173d3a1bf36c2fb7f9df86
https://git.kernel.org/stable/c/cdf1a683a01583bca4b618dd16223cbd6e462e21
https://mirrors.edge.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.15.47


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.



###SIDEBAR###