Description

In the Linux kernel, the following vulnerability has been resolved: iommu/arm-smmu-v3-sva: Fix mm use-after-free We currently call arm64_mm_context_put() without holding a reference to the mm, which can result in use-after-free. Call mmgrab()/mmdrop() to ensure the mm only gets freed after we unpinned the ASID.

INFO

Published Date :

2025-02-26T02:12:47.206Z

Last Modified :

2025-05-04T08:37:24.999Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2022-49426 vulnerability.

Vendors Products
Linux
  • Linux Kernel
Redhat
  • Enterprise Linux
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2022-49426.

URL Resource
https://git.kernel.org/stable/c/9aa215450888cf29af0c479e14a712dc6b0c506c cve-icon cve-icon
https://git.kernel.org/stable/c/cbd23144f7662b00bcde32a938c4a4057e476d68 cve-icon cve-icon
https://git.kernel.org/stable/c/e3cbbdbff8a4db5d053c53fd71be62ccccdb52b0 cve-icon cve-icon
https://git.kernel.org/stable/c/fc90f13ea0dcd960e5002d204fa55cec4e0db2fa cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2025022655-CVE-2022-49426-313d@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2022-49426 cve-icon
https://www.cve.org/CVERecord?id=CVE-2022-49426 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact