{
"document": {
"aggregate_severity": {
"text": "Important"
},
"category": "csaf_vex",
"csaf_version": "2.0",
"distribution": {
"text": "TuxCare License Agreement",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Cloud Linux Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://tuxcare.com/contact/",
"name": "TuxCare",
"namespace": "https://tuxcare.com/"
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.tuxcare.com/csaf/v2/els_os/centos8.5els/vex/2022/cve-2022-49238-els_os-centos8_5els.json"
}
],
"title": "Security update on CVE-2022-49238",
"tracking": {
"current_release_date": "2025-12-23T22:15:38Z",
"generator": {
"date": "2025-12-23T22:15:38Z",
"engine": {
"name": "pyCSAF"
}
},
"id": "CVE-2022-49238-ELS_OS-CENTOS8.5ELS",
"initial_release_date": "2022-01-01T00:00:00Z",
"revision_history": [
{
"date": "2022-01-01T00:00:00Z",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-07-23T19:20:41Z",
"number": "2",
"summary": "Official Publication"
},
{
"date": "2025-12-23T22:15:38Z",
"number": "3",
"summary": "Update document"
}
],
"status": "final",
"version": "2"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Community Enterprise Operating System 8.5",
"product": {
"name": "Community Enterprise Operating System 8.5",
"product_id": "CentOS-8.5",
"product_identification_helper": {
"cpe": "cpe:2.3:o:centos:centos:8.5:*:*:*:*:*:*:*"
}
}
}
],
"category": "product_family",
"name": "Community Enterprise Operating System"
}
],
"category": "vendor",
"name": "Red Hat, Inc."
},
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "kernel-tools-libs-devel-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64",
"product": {
"name": "kernel-tools-libs-devel-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64",
"product_id": "kernel-tools-libs-devel-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/cloudlinux/kernel-tools-libs-devel@4.18.0-348.7.1.el8_5.tuxcare.els29?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-libs-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64",
"product": {
"name": "kernel-tools-libs-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64",
"product_id": "kernel-tools-libs-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/cloudlinux/kernel-tools-libs@4.18.0-348.7.1.el8_5.tuxcare.els29?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-modules-extra-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64",
"product": {
"name": "kernel-debug-modules-extra-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64",
"product_id": "kernel-debug-modules-extra-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/cloudlinux/kernel-debug-modules-extra@4.18.0-348.7.1.el8_5.tuxcare.els29?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-modules-internal-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64",
"product": {
"name": "kernel-debug-modules-internal-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64",
"product_id": "kernel-debug-modules-internal-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/cloudlinux/kernel-debug-modules-internal@4.18.0-348.7.1.el8_5.tuxcare.els29?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-headers-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64",
"product": {
"name": "kernel-headers-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64",
"product_id": "kernel-headers-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/cloudlinux/kernel-headers@4.18.0-348.7.1.el8_5.tuxcare.els29?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-modules-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64",
"product": {
"name": "kernel-modules-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64",
"product_id": "kernel-modules-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/cloudlinux/kernel-modules@4.18.0-348.7.1.el8_5.tuxcare.els29?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64",
"product": {
"name": "kernel-tools-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64",
"product_id": "kernel-tools-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/cloudlinux/kernel-tools@4.18.0-348.7.1.el8_5.tuxcare.els29?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-cross-headers-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64",
"product": {
"name": "kernel-cross-headers-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64",
"product_id": "kernel-cross-headers-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/cloudlinux/kernel-cross-headers@4.18.0-348.7.1.el8_5.tuxcare.els29?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-modules-extra-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64",
"product": {
"name": "kernel-modules-extra-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64",
"product_id": "kernel-modules-extra-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/cloudlinux/kernel-modules-extra@4.18.0-348.7.1.el8_5.tuxcare.els29?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-devel-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64",
"product": {
"name": "kernel-devel-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64",
"product_id": "kernel-devel-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/cloudlinux/kernel-devel@4.18.0-348.7.1.el8_5.tuxcare.els29?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
}
],
"category": "vendor",
"name": "CloudLinux"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-libs-devel-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64 as a component of Community Enterprise Operating System 8.5",
"product_id": "CentOS-8.5:kernel-tools-libs-devel-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64"
},
"product_reference": "kernel-tools-libs-devel-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64",
"relates_to_product_reference": "CentOS-8.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-libs-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64 as a component of Community Enterprise Operating System 8.5",
"product_id": "CentOS-8.5:kernel-tools-libs-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64"
},
"product_reference": "kernel-tools-libs-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64",
"relates_to_product_reference": "CentOS-8.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-modules-extra-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64 as a component of Community Enterprise Operating System 8.5",
"product_id": "CentOS-8.5:kernel-debug-modules-extra-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64"
},
"product_reference": "kernel-debug-modules-extra-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64",
"relates_to_product_reference": "CentOS-8.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-modules-internal-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64 as a component of Community Enterprise Operating System 8.5",
"product_id": "CentOS-8.5:kernel-debug-modules-internal-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64"
},
"product_reference": "kernel-debug-modules-internal-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64",
"relates_to_product_reference": "CentOS-8.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-headers-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64 as a component of Community Enterprise Operating System 8.5",
"product_id": "CentOS-8.5:kernel-headers-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64"
},
"product_reference": "kernel-headers-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64",
"relates_to_product_reference": "CentOS-8.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-modules-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64 as a component of Community Enterprise Operating System 8.5",
"product_id": "CentOS-8.5:kernel-modules-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64"
},
"product_reference": "kernel-modules-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64",
"relates_to_product_reference": "CentOS-8.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64 as a component of Community Enterprise Operating System 8.5",
"product_id": "CentOS-8.5:kernel-tools-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64"
},
"product_reference": "kernel-tools-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64",
"relates_to_product_reference": "CentOS-8.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-cross-headers-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64 as a component of Community Enterprise Operating System 8.5",
"product_id": "CentOS-8.5:kernel-cross-headers-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64"
},
"product_reference": "kernel-cross-headers-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64",
"relates_to_product_reference": "CentOS-8.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-modules-extra-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64 as a component of Community Enterprise Operating System 8.5",
"product_id": "CentOS-8.5:kernel-modules-extra-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64"
},
"product_reference": "kernel-modules-extra-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64",
"relates_to_product_reference": "CentOS-8.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64 as a component of Community Enterprise Operating System 8.5",
"product_id": "CentOS-8.5:kernel-devel-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64"
},
"product_reference": "kernel-devel-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64",
"relates_to_product_reference": "CentOS-8.5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2022-49238",
"notes": [
{
"category": "description",
"text": "In the Linux kernel, the following vulnerability has been resolved:\nath11k: free peer for station when disconnect from AP for QCA6390/WCN6855\nCommit b4a0f54156ac (\"ath11k: move peer delete after vdev stop of station\nfor QCA6390 and WCN6855\") is to fix firmware crash by changing the WMI\ncommand sequence, but actually skip all the peer delete operation, then\nit lead commit 58595c9874c6 (\"ath11k: Fixing dangling pointer issue upon\npeer delete failure\") not take effect, and then happened a use-after-free\nwarning from KASAN. because the peer->sta is not set to NULL and then used\nlater.\nChange to only skip the WMI_PEER_DELETE_CMDID for QCA6390/WCN6855.\nlog of user-after-free:\n[ 534.888665] BUG: KASAN: use-after-free in ath11k_dp_rx_update_peer_stats+0x912/0xc10 [ath11k]\n[ 534.888696] Read of size 8 at addr ffff8881396bb1b8 by task rtcwake/2860\n[ 534.888705] CPU: 4 PID: 2860 Comm: rtcwake Kdump: loaded Tainted: G W 5.15.0-wt-ath+ #523\n[ 534.888712] Hardware name: Intel(R) Client Systems NUC8i7HVK/NUC8i7HVB, BIOS HNKBLi70.86A.0067.2021.0528.1339 05/28/2021\n[ 534.888716] Call Trace:\n[ 534.888720] \n[ 534.888726] dump_stack_lvl+0x57/0x7d\n[ 534.888736] print_address_description.constprop.0+0x1f/0x170\n[ 534.888745] ? ath11k_dp_rx_update_peer_stats+0x912/0xc10 [ath11k]\n[ 534.888771] kasan_report.cold+0x83/0xdf\n[ 534.888783] ? ath11k_dp_rx_update_peer_stats+0x912/0xc10 [ath11k]\n[ 534.888810] ath11k_dp_rx_update_peer_stats+0x912/0xc10 [ath11k]\n[ 534.888840] ath11k_dp_rx_process_mon_status+0x529/0xa70 [ath11k]\n[ 534.888874] ? ath11k_dp_rx_mon_status_bufs_replenish+0x3f0/0x3f0 [ath11k]\n[ 534.888897] ? check_prev_add+0x20f0/0x20f0\n[ 534.888922] ? __lock_acquire+0xb72/0x1870\n[ 534.888937] ? find_held_lock+0x33/0x110\n[ 534.888954] ath11k_dp_rx_process_mon_rings+0x297/0x520 [ath11k]\n[ 534.888981] ? rcu_read_unlock+0x40/0x40\n[ 534.888990] ? ath11k_dp_rx_pdev_alloc+0xd90/0xd90 [ath11k]\n[ 534.889026] ath11k_dp_service_mon_ring+0x67/0xe0 [ath11k]\n[ 534.889053] ? ath11k_dp_rx_process_mon_rings+0x520/0x520 [ath11k]\n[ 534.889075] call_timer_fn+0x167/0x4a0\n[ 534.889084] ? add_timer_on+0x3b0/0x3b0\n[ 534.889103] ? lockdep_hardirqs_on_prepare.part.0+0x18c/0x370\n[ 534.889117] __run_timers.part.0+0x539/0x8b0\n[ 534.889123] ? ath11k_dp_rx_process_mon_rings+0x520/0x520 [ath11k]\n[ 534.889157] ? call_timer_fn+0x4a0/0x4a0\n[ 534.889164] ? mark_lock_irq+0x1c30/0x1c30\n[ 534.889173] ? clockevents_program_event+0xdd/0x280\n[ 534.889189] ? mark_held_locks+0xa5/0xe0\n[ 534.889203] run_timer_softirq+0x97/0x180\n[ 534.889213] __do_softirq+0x276/0x86a\n[ 534.889230] __irq_exit_rcu+0x11c/0x180\n[ 534.889238] irq_exit_rcu+0x5/0x20\n[ 534.889244] sysvec_apic_timer_interrupt+0x8e/0xc0\n[ 534.889251] \n[ 534.889254] \n[ 534.889259] asm_sysvec_apic_timer_interrupt+0x12/0x20\n[ 534.889265] RIP: 0010:_raw_spin_unlock_irqrestore+0x38/0x70\n[ 534.889271] Code: 74 24 10 e8 ea c2 bf fd 48 89 ef e8 12 53 c0 fd 81 e3 00 02 00 00 75 25 9c 58 f6 c4 02 75 2d 48 85 db 74 01 fb bf 01 00 00 00 13 a7 b5 fd 65 8b 05 cc d9 9c 5e 85 c0 74 0a 5b 5d c3 e8 a0 ee\n[ 534.889276] RSP: 0018:ffffc90002e5f880 EFLAGS: 00000206\n[ 534.889284] RAX: 0000000000000006 RBX: 0000000000000200 RCX: ffffffff9f256f10\n[ 534.889289] RDX: 0000000000000000 RSI: ffffffffa1c6e420 RDI: 0000000000000001\n[ 534.889293] RBP: ffff8881095e6200 R08: 0000000000000001 R09: ffffffffa40d2b8f\n[ 534.889298] R10: fffffbfff481a571 R11: 0000000000000001 R12: ffff8881095e6e68\n[ 534.889302] R13: ffffc90002e5f908 R14: 0000000000000246 R15: 0000000000000000\n[ 534.889316] ? mark_lock+0xd0/0x14a0\n[ 534.889332] klist_next+0x1d4/0x450\n[ 534.889340] ? dpm_wait_for_subordinate+0x2d0/0x2d0\n[ 534.889350] device_for_each_child+0xa8/0x140\n[ 534.889360] ? device_remove_class_symlinks+0x1b0/0x1b0\n[ 534.889370] ? __lock_release+0x4bd/0x9f0\n[ 534.889378] ? dpm_suspend+0x26b/0x3f0\n[ 534.889390] dpm_wait_for_subordinate+\n---truncated---",
"title": "Vulnerability description"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"CentOS-8.5:kernel-tools-libs-devel-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64",
"CentOS-8.5:kernel-tools-libs-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64",
"CentOS-8.5:kernel-debug-modules-extra-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64",
"CentOS-8.5:kernel-debug-modules-internal-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64",
"CentOS-8.5:kernel-headers-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64",
"CentOS-8.5:kernel-modules-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64",
"CentOS-8.5:kernel-tools-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64",
"CentOS-8.5:kernel-cross-headers-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64",
"CentOS-8.5:kernel-modules-extra-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64",
"CentOS-8.5:kernel-devel-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://cve.tuxcare.com/els/cve/CVE-2022-49238"
}
],
"release_date": "2025-02-26T00:00:00",
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CentOS-8.5:kernel-tools-libs-devel-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64",
"CentOS-8.5:kernel-tools-libs-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64",
"CentOS-8.5:kernel-debug-modules-extra-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64",
"CentOS-8.5:kernel-debug-modules-internal-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64",
"CentOS-8.5:kernel-headers-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64",
"CentOS-8.5:kernel-modules-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64",
"CentOS-8.5:kernel-tools-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64",
"CentOS-8.5:kernel-cross-headers-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64",
"CentOS-8.5:kernel-modules-extra-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64",
"CentOS-8.5:kernel-devel-0:4.18.0-348.7.1.el8_5.tuxcare.els29.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "High"
}
]
}
]
}