CVE-2022-49650

MEDIUM

Linux Kernel 4.17-5.15.54 5.16-5.18.11 - Integer Underflow in DMA Engine Runtime PM

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: dmaengine: qcom: bam_dma: fix runtime PM underflow Commit dbad41e7bb5f ("dmaengine: qcom: bam_dma: check if the runtime pm enabled") caused unbalanced pm_runtime_get/put() calls when the bam is controlled remotely. This commit reverts it and just enables pm_runtime in all cases, the clk_* functions already just nop when the clock is NULL. Also clean up a bit by removing unnecessary bamclk null checks.

References (3)

Core 3

Core References

Patch

https://git.kernel.org/stable/c/2f6ded79068cac8cff41d5d5632564165d98ee12

Patch

https://git.kernel.org/stable/c/b702a1077b51fcb39507cc3bd39206f539319a96

Patch

https://git.kernel.org/stable/c/0ac9c3dd0d6fe293cd5044cfad10bec27d171e4e

Scores

CVSS v3 5.5

EPSS 0.0024

EPSS Percentile 15.2%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Details

CWE

CWE-191

Status published

Products (13)

linux/Kernel 4.17.0 - 5.15.54linux

linux/Kernel 5.16.0 - 5.18.11linux

Linux/Linux < 4.17

Linux/Linux 4.17

Linux/Linux 5.15.54 - 5.15.*

Linux/Linux 5.18.11 - 5.18.*

Linux/Linux 5.19

Linux/Linux dbad41e7bb5f4b9949ff5ea1d76c20711f326308 - 0ac9c3dd0d6fe293cd5044cfad10bec27d171e4e

Linux/Linux dbad41e7bb5f4b9949ff5ea1d76c20711f326308 - 2f6ded79068cac8cff41d5d5632564165d98ee12

Linux/Linux dbad41e7bb5f4b9949ff5ea1d76c20711f326308 - b702a1077b51fcb39507cc3bd39206f539319a96

... and 3 more

Published Feb 26, 2025

Tracked Since Feb 18, 2026