{"id":"CVE-2022-49359","summary":"drm/panfrost: Job should reference MMU not file_priv","details":"In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/panfrost: Job should reference MMU not file_priv\n\nFor a while now it's been allowed for a MMU context to outlive it's\ncorresponding panfrost_priv, however the job structure still references\npanfrost_priv to get hold of the MMU context. If panfrost_priv has been\nfreed this is a use-after-free which I've been able to trigger resulting\nin a splat.\n\nTo fix this, drop the reference to panfrost_priv in the job structure\nand add a direct reference to the MMU structure which is what's actually\nneeded.","modified":"2026-04-02T08:27:31.302574Z","published":"2025-02-26T02:11:07.930Z","related":["SUSE-SU-2025:1176-1","SUSE-SU-2025:1241-1"],"database_specific":{"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/49xxx/CVE-2022-49359.json","cna_assigner":"Linux"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/472dd7ea5e19a1aeabf1711ddc756777e05ee7c2"},{"type":"WEB","url":"https://git.kernel.org/stable/c/6e516faf04317db2c46cbec4e3b78b4653a5b109"},{"type":"WEB","url":"https://git.kernel.org/stable/c/8c8e8cc91a6ffc79865108279a74fd57d9070a17"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/49xxx/CVE-2022-49359.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-49359"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"7fdc48cc63a30fa3480d18bdd8c5fff2b9b15212"},{"fixed":"8c8e8cc91a6ffc79865108279a74fd57d9070a17"},{"fixed":"472dd7ea5e19a1aeabf1711ddc756777e05ee7c2"},{"fixed":"6e516faf04317db2c46cbec4e3b78b4653a5b109"}]},{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"0"},{"last_affected":"c29485e34e63198dca6289639aa711f99d88e76e"},{"last_affected":"626adede2642f00c8918999a2451bd0a644ab9b7"},{"last_affected":"cf461fa9250a634e8afc4433d82ae0decea8136e"}]}],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-49359.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}]}