In snd_pcm_hw_free it seems like that the function calls the unlock too early, this may lead to a race condition and use-after-free.
Created kernel tracking bugs for this issue: Affects: fedora-all [bug 2068257]
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2022:7444 https://access.redhat.com/errata/RHSA-2022:7444
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2022:7683 https://access.redhat.com/errata/RHSA-2022:7683
This issue has been addressed in the following products: Red Hat Enterprise Linux 9 Via RHSA-2022:7933 https://access.redhat.com/errata/RHSA-2022:7933
This issue has been addressed in the following products: Red Hat Enterprise Linux 9 Via RHSA-2022:8267 https://access.redhat.com/errata/RHSA-2022:8267
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s): https://access.redhat.com/security/cve/cve-2022-1048
(In reply to errata-xmlrpc from comment #12) > This issue has been addressed in the following products: > > Red Hat Enterprise Linux 8 > > Via RHSA-2022:7683 https://access.redhat.com/errata/RHSA-2022:7683 Hello, this bugzilla is not closed with ERRATA and referenced from https://access.redhat.com/errata/RHSA-2022:7683 ... but RHEL 8 bug 2068254 is still onyl VERIFIED. Which errata was this fixed in RHEL 8? Was it fixed in RHEL 8 at all?