CVE-2022-49525

[ 14.746697] removeprocentry: removing non-empty directory 'irq/21', leaking at least 'cx25821[1]' [ 14.747449] WARNING: CPU: 4 PID: 368 at fs/proc/generic.c:717 removeprocentry+0x389/0x3f0 [ 14.751611] RIP: 0010:removeprocentry+0x389/0x3f0 [ 14.759589] Call Trace: [ 14.759792] <TASK> [ 14.759975] unregisterirqproc+0x14c/0x170 [ 14.760340] irqfreedescs+0x94/0xe0 [ 14.760640] mpunmapirq+0xb6/0x100 [ 14.760937] acpiunregistergsiioapic+0x27/0x40 [ 14.761334] acpipciirqdisable+0x1d3/0x320 [ 14.761688] pcidisabledevice+0x1ad/0x380 [ 14.762027] ? rawspinunlockirqrestore+0x2d/0x60 [ 14.762442] ? cx25821shutdown+0x20/0x9f0 [cx25821] [ 14.762848] cx25821finidev+0x48/0xc0 [cx25821] [ 14.763242] pcideviceremove+0x92/0x240

Fix this by freeing the irq before call pcidisabledevice().

References

Affected packages

Debian:11 / linux

Package

Name: linux
Purl: pkg:deb/debian/linux?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

5.10.127-1

Affected versions

5.*

5.10.46-4

5.10.46-5

5.10.70-1~bpo10+1

5.10.70-1

5.10.84-1

5.10.92-1~bpo10+1

5.10.92-1

5.10.92-2

5.10.103-1~bpo10+1

5.10.103-1

5.10.106-1

5.10.113-1

5.10.120-1~bpo10+1

5.10.120-1

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:12 / linux

Package

Name: linux
Purl: pkg:deb/debian/linux?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

5.18.5-1

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:13 / linux

Package

Name: linux
Purl: pkg:deb/debian/linux?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

5.18.5-1

Ecosystem specific

{
    "urgency": "not yet assigned"
}