1. Home
  2. Vulnerabilities
  3. CVE-2022-49098
5.5
MEDIUM CVSS 3.1
CVE-2022-49098
Drivers: hv: vmbus: Fix potential crash on module unload
Description

In the Linux kernel, the following vulnerability has been resolved: Drivers: hv: vmbus: Fix potential crash on module unload The vmbus driver relies on the panic notifier infrastructure to perform some operations when a panic event is detected. Since vmbus can be built as module, it is required that the driver handles both registering and unregistering such panic notifier callback. After commit 74347a99e73a ("x86/Hyper-V: Unload vmbus channel in hv panic callback") though, the panic notifier registration is done unconditionally in the module initialization routine whereas the unregistering procedure is conditionally guarded and executes only if HV_FEATURE_GUEST_CRASH_MSR_AVAILABLE capability is set. This patch fixes that by unconditionally unregistering the panic notifier in the module's exit routine as well.

INFO

Published Date :

Feb. 26, 2025, 7 a.m.

Last Modified :

Oct. 14, 2025, 8:04 p.m.

Remotely Exploit :

No

Source :

416baaa9-dc9f-4396-8d5f-8c081fb06d67
Affected Products

The following products are affected by CVE-2022-49098 vulnerability. Even if cvefeed.io is aware of the exact versions of the products that are affected, the information is not represented in the table below.

ID Vendor Product Action
1 Linux linux_kernel
: Total Affected Vendor : 1 | Products : 1
CVSS Scores
The Common Vulnerability Scoring System is a standardized framework for assessing the severity of vulnerabilities in software and systems. We collect and displays CVSS scores from various sources for each CVE.
Score Version Severity Vector Exploitability Score Impact Score Source
CVSS 3.1 MEDIUM [email protected]
Solution
Unconditionally unregister the panic notifier in the module's exit routine.
  • Update the Linux kernel to the latest stable version.
  • Ensure panic notifier is properly registered and unregistered.
  • Apply the provided patch to the vmbus driver.
References to Advisories, Solutions, and Tools

Here, you will find a curated list of external links that provide in-depth information, practical solutions, and valuable tools related to CVE-2022-49098.

URL Resource
https://git.kernel.org/stable/c/2133c422a103cf7c7768c37b9ac382e73b691892 Patch
https://git.kernel.org/stable/c/3d0078f8bddd58d9bb1ad40bbe929f8633abb276 Patch
https://git.kernel.org/stable/c/5ea98d0f5f035c1bcf1517ccec0e024ae35a48b2 Patch
https://git.kernel.org/stable/c/6b4c0149a56147b29169e07000d566162892722a Patch
https://git.kernel.org/stable/c/792f232d57ff28bbd5f9c4abe0466b23d5879dc8 Patch
https://git.kernel.org/stable/c/cf580d2e3884dbafd6b90269b03a24d661578624 Patch
https://git.kernel.org/stable/c/dcd6b1a624c0ffa21034d8b1e02e9d068458f596 Patch
CWE - Common Weakness Enumeration

While CVE identifies specific instances of vulnerabilities, CWE categorizes the common flaws or weaknesses that can lead to vulnerabilities. CVE-2022-49098 is associated with the following CWEs:

Common Attack Pattern Enumeration and Classification (CAPEC)

Common Attack Pattern Enumeration and Classification (CAPEC) stores attack patterns, which are descriptions of the common attributes and approaches employed by adversaries to exploit the CVE-2022-49098 weaknesses.

We scan GitHub repositories to detect new proof-of-concept exploits. Following list is a collection of public exploits and proof-of-concepts, which have been published on GitHub (sorted by the most recently updated).

Results are limited to the first 15 repositories due to potential performance issues.

The following list is the news that have been mention CVE-2022-49098 vulnerability anywhere in the article.

Results are limited to the first 20 news articles due to potential performance issues.

The following table lists the changes that have been made to the CVE-2022-49098 vulnerability over time.

Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability's severity, exploitability, or other characteristics.

  • Initial Analysis by [email protected]

    Oct. 14, 2025

    Action Type Old Value New Value
    Added CVSS V3.1 AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
    Added CWE NVD-CWE-noinfo
    Added CPE Configuration OR *cpe:2.3:o:linux:linux_kernel:5.7:rc6:*:*:*:*:*:* *cpe:2.3:o:linux:linux_kernel:5.18:rc1:*:*:*:*:*:* *cpe:2.3:o:linux:linux_kernel:5.7:rc2:*:*:*:*:*:* *cpe:2.3:o:linux:linux_kernel:5.7:rc3:*:*:*:*:*:* *cpe:2.3:o:linux:linux_kernel:5.7:rc4:*:*:*:*:*:* *cpe:2.3:o:linux:linux_kernel:5.7:rc5:*:*:*:*:*:* *cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* versions from (including) 4.19.118 up to (excluding) 4.19.238 *cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* versions from (including) 5.4.35 up to (excluding) 5.4.189 *cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* versions from (including) 5.6.7 up to (excluding) 5.7 *cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* versions from (including) 5.7.1 up to (excluding) 5.10.111 *cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* versions from (including) 5.11 up to (excluding) 5.15.34 *cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* versions from (including) 5.16 up to (excluding) 5.16.20 *cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* versions from (including) 5.17 up to (excluding) 5.17.3 *cpe:2.3:o:linux:linux_kernel:5.7:rc7:*:*:*:*:*:* *cpe:2.3:o:linux:linux_kernel:5.7:-:*:*:*:*:*:*
    Added Reference Type kernel.org: https://git.kernel.org/stable/c/2133c422a103cf7c7768c37b9ac382e73b691892 Types: Patch
    Added Reference Type kernel.org: https://git.kernel.org/stable/c/3d0078f8bddd58d9bb1ad40bbe929f8633abb276 Types: Patch
    Added Reference Type kernel.org: https://git.kernel.org/stable/c/5ea98d0f5f035c1bcf1517ccec0e024ae35a48b2 Types: Patch
    Added Reference Type kernel.org: https://git.kernel.org/stable/c/6b4c0149a56147b29169e07000d566162892722a Types: Patch
    Added Reference Type kernel.org: https://git.kernel.org/stable/c/792f232d57ff28bbd5f9c4abe0466b23d5879dc8 Types: Patch
    Added Reference Type kernel.org: https://git.kernel.org/stable/c/cf580d2e3884dbafd6b90269b03a24d661578624 Types: Patch
    Added Reference Type kernel.org: https://git.kernel.org/stable/c/dcd6b1a624c0ffa21034d8b1e02e9d068458f596 Types: Patch
  • New CVE Received by 416baaa9-dc9f-4396-8d5f-8c081fb06d67

    Feb. 26, 2025

    Action Type Old Value New Value
    Added Description In the Linux kernel, the following vulnerability has been resolved: Drivers: hv: vmbus: Fix potential crash on module unload The vmbus driver relies on the panic notifier infrastructure to perform some operations when a panic event is detected. Since vmbus can be built as module, it is required that the driver handles both registering and unregistering such panic notifier callback. After commit 74347a99e73a ("x86/Hyper-V: Unload vmbus channel in hv panic callback") though, the panic notifier registration is done unconditionally in the module initialization routine whereas the unregistering procedure is conditionally guarded and executes only if HV_FEATURE_GUEST_CRASH_MSR_AVAILABLE capability is set. This patch fixes that by unconditionally unregistering the panic notifier in the module's exit routine as well.
    Added Reference https://git.kernel.org/stable/c/2133c422a103cf7c7768c37b9ac382e73b691892
    Added Reference https://git.kernel.org/stable/c/3d0078f8bddd58d9bb1ad40bbe929f8633abb276
    Added Reference https://git.kernel.org/stable/c/5ea98d0f5f035c1bcf1517ccec0e024ae35a48b2
    Added Reference https://git.kernel.org/stable/c/6b4c0149a56147b29169e07000d566162892722a
    Added Reference https://git.kernel.org/stable/c/792f232d57ff28bbd5f9c4abe0466b23d5879dc8
    Added Reference https://git.kernel.org/stable/c/cf580d2e3884dbafd6b90269b03a24d661578624
    Added Reference https://git.kernel.org/stable/c/dcd6b1a624c0ffa21034d8b1e02e9d068458f596
EPSS is a daily estimate of the probability of exploitation activity being observed over the next 30 days. Following chart shows the EPSS score history of the vulnerability.
Vulnerability Scoring Details
Base CVSS Score: 5.5
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact