CVE-2022-49315

MEDIUM

Linux Kernel Deadlock in rtllib_beacons_stop()

Title source: llm
STIX 2.1

Description

In the Linux kernel, the following vulnerability has been resolved: drivers: staging: rtl8192e: Fix deadlock in rtllib_beacons_stop() There is a deadlock in rtllib_beacons_stop(), which is shown below: (Thread 1) | (Thread 2) | rtllib_send_beacon() rtllib_beacons_stop() | mod_timer() spin_lock_irqsave() //(1) | (wait a time) ... | rtllib_send_beacon_cb() del_timer_sync() | spin_lock_irqsave() //(2) (wait timer to stop) | ... We hold ieee->beacon_lock in position (1) of thread 1 and use del_timer_sync() to wait timer to stop, but timer handler also need ieee->beacon_lock in position (2) of thread 2. As a result, rtllib_beacons_stop() will block forever. This patch extracts del_timer_sync() from the protection of spin_lock_irqsave(), which could let timer handler to obtain the needed lock.

References (9)

Core 9

Scores

CVSS v3 5.5
EPSS 0.0019
EPSS Percentile 8.6%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact partial

Details

CWE
CWE-667
Status published
Products (29)
linux/Kernel 3.2.0 - 4.9.318linux
linux/Kernel 4.10.0 - 4.14.283linux
linux/Kernel 4.15.0 - 4.19.247linux
linux/Kernel 4.20.0 - 5.4.198linux
linux/Kernel 5.11.0 - 5.15.47linux
linux/Kernel 5.16.0 - 5.17.15linux
linux/Kernel 5.18.0 - 5.18.4linux
linux/Kernel 5.5.0 - 5.10.122linux
Linux/Linux < 3.2
Linux/Linux 3.2
... and 19 more
Published Feb 26, 2025
Tracked Since Feb 18, 2026