CVE-2022-49313

MEDIUM

Linux Kernel - Deadlock in oxu_bus_suspend() via del_timer_sync()

Title source: llm
STIX 2.1

Description

In the Linux kernel, the following vulnerability has been resolved: drivers: usb: host: Fix deadlock in oxu_bus_suspend() There is a deadlock in oxu_bus_suspend(), which is shown below: (Thread 1) | (Thread 2) | timer_action() oxu_bus_suspend() | mod_timer() spin_lock_irq() //(1) | (wait a time) ... | oxu_watchdog() del_timer_sync() | spin_lock_irq() //(2) (wait timer to stop) | ... We hold oxu->lock in position (1) of thread 1, and use del_timer_sync() to wait timer to stop, but timer handler also need oxu->lock in position (2) of thread 2. As a result, oxu_bus_suspend() will block forever. This patch extracts del_timer_sync() from the protection of spin_lock_irq(), which could let timer handler to obtain the needed lock.

References (9)

Core 9

Scores

CVSS v3 5.5
EPSS 0.0019
EPSS Percentile 9.0%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact partial

Details

CWE
CWE-667
Status published
Products (29)
linux/Kernel 2.6.29 - 4.9.318linux
linux/Kernel 4.10.0 - 4.14.283linux
linux/Kernel 4.15.0 - 4.19.247linux
linux/Kernel 4.20.0 - 5.4.198linux
linux/Kernel 5.11.0 - 5.15.47linux
linux/Kernel 5.16.0 - 5.17.15linux
linux/Kernel 5.18.0 - 5.18.4linux
linux/Kernel 5.5.0 - 5.10.122linux
Linux/Linux < 2.6.29
Linux/Linux 2.6.29
... and 19 more
Published Feb 26, 2025
Tracked Since Feb 18, 2026