Login Sign Up

CVE-2022-49942

5.5 MEDIUM
Denial of Service

📋 TL;DR

This vulnerability in the Linux kernel's WiFi subsystem causes a kernel warning/panic when attempting to send channel switch announcements in IBSS (ad-hoc) mode while disconnected. It affects Linux systems using wireless networking in IBSS mode. The issue is triggered by invalid state handling during wireless channel switching.

💻 Affected Systems

Products:
  • Linux kernel
Versions: Linux kernel versions before the fix commits (specific versions vary by distribution)
Operating Systems: Linux distributions using vulnerable kernel versions
Default Config Vulnerable: ✅ No
Notes: Only affects systems using IBSS (ad-hoc) wireless mode. Most enterprise deployments use infrastructure mode (BSS) which is not affected.

📦 What is this software?

Linux Kernel by Linux

The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...

Learn more about Linux Kernel →

Linux Kernel by Linux

The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...

Learn more about Linux Kernel →

Linux Kernel by Linux

The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...

Learn more about Linux Kernel →

Linux Kernel by Linux

The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...

Learn more about Linux Kernel →

Linux Kernel by Linux

The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...

Learn more about Linux Kernel →

Linux Kernel by Linux

The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...

Learn more about Linux Kernel →

Linux Kernel by Linux

The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...

Learn more about Linux Kernel →

Linux Kernel by Linux

The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...

Learn more about Linux Kernel →

Linux Kernel by Linux

The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...

Learn more about Linux Kernel →

Linux Kernel by Linux

The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...

Learn more about Linux Kernel →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Kernel panic leading to system crash and denial of service, potentially disrupting critical services on affected systems.

🟠

Likely Case

System instability or crash when wireless interface attempts channel switching in disconnected IBSS mode, causing temporary service disruption.

🟢

If Mitigated

Minor system instability that may trigger kernel warnings but not full crashes if proper monitoring and recovery mechanisms are in place.

🌐 Internet-Facing: LOW - Requires local wireless network access and specific IBSS mode configuration.
🏢 Internal Only: MEDIUM - Could affect internal wireless networks using IBSS mode, potentially disrupting internal services.

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: NO
Unauthenticated Exploit: ✅ No
Complexity: MEDIUM

Exploitation requires wireless network access and ability to trigger channel switching in IBSS mode. Discovered via syzkaller fuzzing.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Fixed in kernel commits: 15bc8966b6d3a5b9bfe4c9facfa02f2b69b1e5f0, 1691a48aef0a82d1754b9853dae7e3f5cacdf70b, 552ba102a6898630a7d16887f29e606d6fabe508, 66689c5c02acd4d76c28498fe220998610aec61e, 864e280cb3a9a0f5212b16ef5057c4e692f7039d

Vendor Advisory: https://git.kernel.org/stable/c/15bc8966b6d3a5b9bfe4c9facfa02f2b69b1e5f0

Restart Required: Yes

Instructions:

1. Update Linux kernel to version containing the fix commits. 2. Check your distribution's security advisories for backported patches. 3. Reboot system after kernel update.

🔧 Temporary Workarounds

Disable IBSS mode

linux

Prevent use of ad-hoc wireless networking which triggers the vulnerability

iwconfig wlan0 mode managed
nmcli connection modify <connection-name> 802-11-wireless.mode infrastructure

Disable wireless interface

linux

Temporarily disable wireless if not needed

ip link set wlan0 down
nmcli radio wifi off

🧯 If You Can't Patch

  • Avoid using IBSS (ad-hoc) wireless mode
  • Implement network monitoring for kernel panic/warning events related to wireless operations

🔍 How to Verify

Check if Vulnerable:

Check kernel version and if IBSS mode is configured: 'uname -r' and review wireless configuration files

Check Version:

uname -r

Verify Fix Applied:

Verify kernel version includes fix commits: 'uname -r' and check distribution patch notes

📡 Detection & Monitoring

Log Indicators:

  • Kernel warnings mentioning 'WARN_ON' in ieee80211_ibss_csa_beacon()
  • System crash logs related to wireless operations
  • dmesg output showing wireless subsystem errors

Network Indicators:

  • Unexpected wireless interface disconnections in IBSS mode
  • Channel switching failures in ad-hoc networks

SIEM Query:

event_source:kernel AND (message:"ieee80211_ibss_csa_beacon" OR message:"WARN_ON" AND message:"IBSS")

📊 Metadata

CVE ID: CVE-2022-49942
CVSS v3 Score: 5.5 (MEDIUM)
CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CWE: CWE-476
EPSS Score: 0.02% exploit probability (3.5th percentile)
Published: June 18, 2025
Last Updated: November 14, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2022-49942, you might also want to check these:

CVE-2022-36648 10.0

This CVE describes a vulnerability in QEMU's hardware emulation where a malformed program executed i...

Same vulnerability type (CWE-476)
CVE-2019-20914 9.8

This vulnerability in GNU LibreDWG is a NULL pointer dereference that can cause application crashes ...

Same vulnerability type (CWE-476)
CVE-2022-30592 9.8

This vulnerability in LiteSpeed QUIC (LSQUIC) before version 3.1.0 involves improper handling of MAX...

Same vulnerability type (CWE-476)