CVE-2022-49326

Summary

CVE-2022-49326 is a vulnerability affecting the Linux kernel that can cause a panic with rtl8180/rtl8185 cards. The issue arises due to not initialized queues being used, leading to a divide error. After updating wpa_supplicant from version 2.9 to 2.10, the kernel would crash when connecting to an AP because control port tx tried to use IEEE80211_AC_VO for the priority, which wpa_supplicant began using in version 2.10. However, only the rtl8187se part of the driver supports QoS. For rtl8180/rtl8185 cards, the priority of the skb is set to IEEE80211_AC_BE (2) by mac80211, but these cards only have one tx queue. The uninitialized tx_ring[2] causes the crash on line 544 of drivers/net/wireless/realtek/rtl818x/rtl8180/dev.c. This vulnerability was reported by Pierre Asselin and has since been fixed.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.