DEBIAN-CVE-2022-49555
- Source
- https://security-tracker.debian.org/tracker/CVE-2022-49555
- Import Source
- https://storage.googleapis.com/debian-osv/debian-cve-osv/DEBIAN-CVE-2022-49555.json
- JSON Data
- https://api.osv.dev/v1/vulns/DEBIAN-CVE-2022-49555
- Upstream
- Published
- 2025-02-26T07:01:31Z
- Modified
- 2025-09-30T05:15:54.649402Z
- Summary
- [none]
- Details
-
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hciqca: Use deltimersync() before freeing While looking at a crash report on a timer list being corrupted, which usually happens when a timer is freed while still active. This is commonly triggered by code calling deltimer() instead of deltimersync() just before freeing. One possible culprit is the hciqca driver, which does exactly that. Eric mentioned that wakeretranstimer could be rearmed via the work queue, so also move the destruction of the work queue before deltimer_sync().
- References
Affected packages
Debian:11 / linux
Package
- Name
- linux
- Purl
- pkg:deb/debian/linux?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed5.10.120-1
Debian:12 / linux
Package
- Name
- linux
- Purl
- pkg:deb/debian/linux?arch=source
Debian:13 / linux
Package
- Name
- linux
- Purl
- pkg:deb/debian/linux?arch=source
Debian:14 / linux
Package
- Name
- linux
- Purl
- pkg:deb/debian/linux?arch=source