high
7
CWE
416 362
Advisory Published
CVE Published
CVE Published
Updated

CVE-2022-1048: Use After Free

First published: Tue Mar 22 2022(Updated: )

A use-after-free flaw was found in the Linux kernel’s sound subsystem in the way a user triggers concurrent calls of PCM hw_params. The hw_free ioctls or similar race condition happens inside ALSA PCM for other ioctls. This flaw allows a local user to crash or potentially escalate their privileges on the system.

Credit: secalert@redhat.com secalert@redhat.com secalert@redhat.com

Affected SoftwareAffected VersionHow to fix
redhat/kernel-rt<0:4.18.0-425.3.1.rt7.213.el8
0:4.18.0-425.3.1.rt7.213.el8
redhat/kernel<0:4.18.0-425.3.1.el8
0:4.18.0-425.3.1.el8
redhat/kernel<0:5.14.0-162.6.1.el9_1
0:5.14.0-162.6.1.el9_1
redhat/kernel-rt<0:5.14.0-162.6.1.rt21.168.el9_1
0:5.14.0-162.6.1.rt21.168.el9_1
Linux Linux kernel>=2.6.12<4.14.279
Linux Linux kernel>=4.15<4.19.243
Linux Linux kernel>=4.20<5.4.193
Linux Linux kernel>=5.5<5.10.109
Linux Linux kernel>=5.11<5.15.32
Linux Linux kernel>=5.16<5.16.18
Linux Linux kernel=5.17
Redhat Enterprise Linux=8.0
Debian Debian Linux=10.0
Debian Debian Linux=11.0
Netapp Baseboard Management Controller H300s Firmware
Netapp Baseboard Management Controller H300s
Netapp Baseboard Management Controller H500s Firmware
Netapp Baseboard Management Controller H500s
Netapp Baseboard Management Controller H700s Firmware
Netapp Baseboard Management Controller H700s
Netapp Baseboard Management Controller H410s Firmware
Netapp Baseboard Management Controller H410s
Netapp Baseboard Management Controller H300e Firmware
Netapp Baseboard Management Controller H300e
Netapp Baseboard Management Controller H500e Firmware
Netapp Baseboard Management Controller H500e
Netapp Baseboard Management Controller H700e Firmware
Netapp Baseboard Management Controller H700e
Netapp Baseboard Management Controller H410c Firmware
Netapp Baseboard Management Controller H410c
All of
Netapp H300s Firmware
Netapp H300s
All of
Netapp H500s Firmware
Netapp H500s
All of
Netapp H700s Firmware
Netapp H700s
All of
Netapp H410s Firmware
Netapp H410s
All of
Netapp H300e Firmware
Netapp H300e
All of
Netapp H500e Firmware
Netapp H500e
All of
Netapp H700e Firmware
Netapp H700e
All of
Netapp H410c Firmware
Netapp H410c
redhat/Linux kernel<5.17
5.17
ubuntu/linux<4.15.0-191.202
4.15.0-191.202
ubuntu/linux<5.4.0-124.140
5.4.0-124.140
ubuntu/linux<5.15.0-35.36
5.15.0-35.36
ubuntu/linux<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-aws<4.15.0-1139.150
4.15.0-1139.150
ubuntu/linux-aws<5.4.0-1083.90
5.4.0-1083.90
ubuntu/linux-aws<5.15.0-1009.11
5.15.0-1009.11
ubuntu/linux-aws<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-aws-5.0<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-aws-5.11<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-aws-5.13<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-aws-5.15<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-aws-5.3<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-aws-5.4<5.4.0-1083.90~18.04.1
5.4.0-1083.90~18.04.1
ubuntu/linux-aws-5.4<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-aws-5.8<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-aws-6.5<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-aws-fips<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-aws-hwe<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-aws-hwe<4.15.0-1139.150~16.04.1
4.15.0-1139.150~16.04.1
ubuntu/linux-azure<5.4.0-1089.94
5.4.0-1089.94
ubuntu/linux-azure<5.15.0-1008.9
5.15.0-1008.9
ubuntu/linux-azure<4.15.0-1149.164~14.04.1
4.15.0-1149.164~14.04.1
ubuntu/linux-azure<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-azure<4.15.0-1149.164~16.04.1
4.15.0-1149.164~16.04.1
ubuntu/linux-azure-4.15<4.15.0-1149.164
4.15.0-1149.164
ubuntu/linux-azure-4.15<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-azure-5.11<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-azure-5.13<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-azure-5.15<5.15.0-1008.9~20.04.1
5.15.0-1008.9~20.04.1
ubuntu/linux-azure-5.15<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-azure-5.3<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-azure-5.4<5.4.0-1089.94~18.04.1
5.4.0-1089.94~18.04.1
ubuntu/linux-azure-5.4<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-azure-6.5<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-azure-edge<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-azure-fde<5.4.0-1089.94
5.4.0-1089.94
ubuntu/linux-azure-fde<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-azure-fde-5.15<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-azure-fips<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-bluefield<5.4.0-1044.49
5.4.0-1044.49
ubuntu/linux-bluefield<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-dell300x<4.15.0-1051.56
4.15.0-1051.56
ubuntu/linux-dell300x<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-fips<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-gcp<5.4.0-1086.94
5.4.0-1086.94
ubuntu/linux-gcp<5.15.0-1006.9
5.15.0-1006.9
ubuntu/linux-gcp<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-gcp<4.15.0-1134.150~16.04.2
4.15.0-1134.150~16.04.2
ubuntu/linux-gcp-4.15<4.15.0-1134.150
4.15.0-1134.150
ubuntu/linux-gcp-4.15<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-gcp-5.11<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-gcp-5.13<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-gcp-5.15<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-gcp-5.3<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-gcp-5.4<5.4.0-1086.94~18.04.1
5.4.0-1086.94~18.04.1
ubuntu/linux-gcp-5.8<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-gcp-6.5<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-gcp-fips<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-gke<5.4.0-1080.86
5.4.0-1080.86
ubuntu/linux-gke<5.15.0-1006.7
5.15.0-1006.7
ubuntu/linux-gke<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-gke-4.15<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-gke-5.0<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-gke-5.15<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-gke-5.3<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-gke-5.4<5.4.0-1080.86~18.04.1
5.4.0-1080.86~18.04.1
ubuntu/linux-gke-5.4<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-gkeop<5.4.0-1051.54
5.4.0-1051.54
ubuntu/linux-gkeop<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-gkeop-5.15<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-gkeop-5.4<5.4.0-1051.54~18.04.1
5.4.0-1051.54~18.04.1
ubuntu/linux-gkeop-5.4<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-hwe<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-hwe<4.15.0-191.202~16.04.1
4.15.0-191.202~16.04.1
ubuntu/linux-hwe-5.11<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-hwe-5.13<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-hwe-5.15<5.15.0-41.44~20.04.1
5.15.0-41.44~20.04.1
ubuntu/linux-hwe-5.15<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-hwe-5.4<5.4.0-124.140~18.04.1
5.4.0-124.140~18.04.1
ubuntu/linux-hwe-5.4<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-hwe-5.8<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-hwe-6.5<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-hwe-edge<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-ibm<5.4.0-1031.35
5.4.0-1031.35
ubuntu/linux-ibm<5.15.0-1005.5
5.15.0-1005.5
ubuntu/linux-ibm<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-ibm-5.15<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-ibm-5.4<5.4.0-1031.35~18.04.1
5.4.0-1031.35~18.04.1
ubuntu/linux-ibm-5.4<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-intel<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-intel-5.13<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-intel-iotg<5.15.0-1008.11
5.15.0-1008.11
ubuntu/linux-intel-iotg<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-intel-iotg-5.15<5.15.0-1008.11~20.04.1
5.15.0-1008.11~20.04.1
ubuntu/linux-intel-iotg-5.15<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-iot<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-kvm<4.15.0-1125.130
4.15.0-1125.130
ubuntu/linux-kvm<5.4.0-1073.78
5.4.0-1073.78
ubuntu/linux-kvm<5.15.0-1008.8
5.15.0-1008.8
ubuntu/linux-kvm<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-laptop<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-lowlatency<5.15.0-35.36
5.15.0-35.36
ubuntu/linux-lowlatency<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-lowlatency-hwe-5.15<5.15.0-42.45~20.04.1
5.15.0-42.45~20.04.1
ubuntu/linux-lowlatency-hwe-5.15<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-lowlatency-hwe-6.5<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-lts-xenial<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-nvidia<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-nvidia-6.5<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-nvidia-6.8<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-nvidia-lowlatency<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-oem<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-oem-5.10<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-oem-5.13<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-oem-5.14<5.14.0-1033.36
5.14.0-1033.36
ubuntu/linux-oem-5.17<5.17.0-1004.4
5.17.0-1004.4
ubuntu/linux-oem-5.17<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-oem-5.6<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-oem-6.5<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-oem-6.8<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-oem-osp1<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-oracle<4.15.0-1104.115
4.15.0-1104.115
ubuntu/linux-oracle<5.4.0-1081.89
5.4.0-1081.89
ubuntu/linux-oracle<5.15.0-1007.9
5.15.0-1007.9
ubuntu/linux-oracle<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-oracle<4.15.0-1104.115~16.04.1
4.15.0-1104.115~16.04.1
ubuntu/linux-oracle-5.0<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-oracle-5.11<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-oracle-5.13<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-oracle-5.15<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-oracle-5.3<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-oracle-5.4<5.4.0-1081.89~18.04.1
5.4.0-1081.89~18.04.1
ubuntu/linux-oracle-6.5<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-raspi<5.4.0-1068.78
5.4.0-1068.78
ubuntu/linux-raspi<5.15.0-1011.13
5.15.0-1011.13
ubuntu/linux-raspi<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-raspi-5.4<5.4.0-1068.78~18.04.1
5.4.0-1068.78~18.04.1
ubuntu/linux-raspi-5.4<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-raspi2<4.15.0-1117.125
4.15.0-1117.125
ubuntu/linux-raspi2<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-raspi2-5.3<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-riscv<5.15.0-1012.13
5.15.0-1012.13
ubuntu/linux-riscv<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-riscv-5.11<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-riscv-5.15<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-riscv-5.8<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-riscv-6.5<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-snapdragon<4.15.0-1135.145
4.15.0-1135.145
ubuntu/linux-snapdragon<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-starfive<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-starfive-6.5<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
ubuntu/linux-xilinx-zynqmp<5.18~<5.4.193<5.15.32
5.18~
5.4.193
5.15.32
debian/linux
5.10.218-1
5.10.221-1
6.1.94-1
6.1.99-1
6.9.12-1
6.10.3-1

Remedy

To mitigate this issue, prevent the module snd-pcm from being loaded. Please see https://access.redhat.com/solutions/41278 for information on how to blacklist a kernel module to prevent it from loading automatically.

Remedy

https://lore.kernel.org/lkml/20220322170720.3529-5-tiwai@suse.de/T/#m1d3b791b815556012c6be92f1c4a7086b854f7f3

Remedy

https://git.kernel.org/linus/1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Remedy

https://git.kernel.org/linus/92ee3c60ec9fe64404dc035e7c41277d74aa26cb

Remedy

https://git.kernel.org/linus/dca947d4d26dbf925a64a6cfb2ddbc035e831a3d

Remedy

https://git.kernel.org/linus/3c3201f8c7bb77eb53b08a3ca8d9a4ddc500b4c0

Remedy

https://git.kernel.org/linus/69534c48ba8ce552ce383b3dfdb271ffe51820c3

Remedy

https://lore.kernel.org/lkml/20220322170720.3529-5-tiwai%40suse.de/T/#m1d3b791b815556012c6be92f1c4a7086b854f7f3

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Parent vulnerabilities

(Appears in the following advisories)

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203