CVE-2022-49777
📋 TL;DR
This CVE describes a memory leak vulnerability in the Linux kernel's i8042 keyboard/mouse controller driver. When the i8042 module is unloaded, it fails to properly destroy a platform device, causing a memory leak. This affects Linux systems using the i8042 driver for PS/2 keyboard/mouse interfaces.
💻 Affected Systems
- Linux kernel
📦 What is this software?
Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →Linux Kernel by Linux
The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...
Learn more about Linux Kernel →⚠️ Risk & Real-World Impact
Worst Case
Sustained memory exhaustion leading to system instability or denial of service through repeated module loading/unloading attacks.
Likely Case
Minor memory leak during legitimate module operations, unlikely to cause noticeable impact in normal usage.
If Mitigated
No impact if proper kernel patching is applied or if i8042 driver is not used.
🎯 Exploit Status
Requires root privileges to load/unload kernel modules. Memory leak vulnerabilities are rarely weaponized for direct exploitation.
🛠️ Fix & Mitigation
✅ Official Fix
Patch Version: Patches available in stable kernel trees (commits referenced in CVE)
Vendor Advisory: https://git.kernel.org/stable/c/3f25add5ecf88de0f8ff2b27b6c0731a1f1b38ed
Restart Required: Yes
Instructions:
1. Update Linux kernel to patched version from your distribution's repositories. 2. Reboot system to load new kernel.
🔧 Temporary Workarounds
Disable i8042 module
linuxPrevent loading of vulnerable i8042 driver if PS/2 devices are not needed
echo 'blacklist i8042' >> /etc/modprobe.d/blacklist.conf
🧯 If You Can't Patch
- Restrict module loading privileges to prevent unauthorized users from exploiting the memory leak
- Monitor system memory usage for unusual patterns indicating potential exploitation
🔍 How to Verify
Check if Vulnerable:
Check kernel version and compare with patched versions from distribution vendorCheck Version:
uname -rVerify Fix Applied:
Verify kernel version after update matches patched version from vendor📡 Detection & Monitoring
Log Indicators:
- Kernel module loading/unloading logs
- System memory exhaustion alerts
Network Indicators:
- None - local vulnerability only
SIEM Query:
Search for repeated i8042 module load/unload events in kernel logs🔗 References
- https://git.kernel.org/stable/c/3f25add5ecf88de0f8ff2b27b6c0731a1f1b38ed
- https://git.kernel.org/stable/c/4f348b60c79671eee33c1389efe89109c93047da
- https://git.kernel.org/stable/c/81cd7e8489278d28794e7b272950c3e00c344e44
- https://git.kernel.org/stable/c/81df118e79b2136b5c016394f67a051dc508b7b6
- https://git.kernel.org/stable/c/a32cd7feb0127bf629a82686b6e2c128139a86e5
- https://git.kernel.org/stable/c/d5f7f6e63fed9c2ed09725d90059a28907e197e3
