CVE-2022-49829 in Linuxinfo

Summary

by MITRE • 05/01/2025

In the Linux kernel, the following vulnerability has been resolved:

drm/scheduler: fix fence ref counting

We leaked dependency fences when processes were beeing killed.

Additional to that grab a reference to the last scheduled fence.

Once again VulDB remains the best source for vulnerability data.

Analysis

by VulDB Data Team • 11/10/2025

The vulnerability identified as CVE-2022-49829 resides within the Linux kernel's graphics subsystem, specifically within the drm/scheduler component responsible for managing graphics command execution and synchronization. This issue represents a memory management flaw that occurs during process termination scenarios, where dependency fences are not properly released, leading to resource leaks that can accumulate over time and potentially impact system stability. The problem manifests when processes are terminated, causing the kernel to fail in properly decrementing reference counts for fence objects that track dependencies between graphics operations.

The technical flaw stems from improper reference counting mechanisms within the graphics scheduler's fence management system. When processes are killed or terminated, the kernel fails to properly release references to dependency fences that have been scheduled but not yet completed. This creates a situation where fence objects remain in memory even though the processes that created them are no longer active, resulting in memory leaks that can grow progressively larger with repeated process terminations. The vulnerability specifically affects the drm/scheduler subsystem which handles the scheduling and execution of graphics commands across multiple hardware contexts.

From an operational impact perspective, this vulnerability can lead to gradual memory consumption increases that may eventually cause system performance degradation or even system instability if left unaddressed. The resource leak occurs during process termination events which are common in graphics-intensive applications and multi-user environments, making this vulnerability particularly concerning for systems handling frequent graphics workloads. The cumulative effect of leaked fences can result in reduced available memory for other system processes, potentially leading to memory pressure conditions that affect overall system responsiveness.

The fix implemented addresses both the primary memory leak issue and introduces additional protective measures by ensuring proper reference handling for the last scheduled fence. This comprehensive approach resolves the dependency fence reference counting problem while also strengthening the overall fence management system. The solution ensures that when processes are terminated, all associated fence references are properly released, preventing the accumulation of stale fence objects in memory. This vulnerability aligns with CWE-401 which describes improper release of memory, and may be relevant to ATT&CK technique T1490 for resource exhaustion attacks that could exploit similar memory management flaws.

Security implications extend beyond simple memory leaks as this vulnerability could potentially be exploited in denial-of-service scenarios where an attacker repeatedly terminates graphics processes to consume system memory. The fix demonstrates proper reference counting practices that align with kernel security best practices, ensuring that all resources are properly managed throughout the lifecycle of graphics operations. This resolution helps maintain system stability in graphics-intensive environments and prevents potential exploitation of resource management flaws that could impact system availability. The fix represents a defensive programming approach that strengthens the kernel's graphics subsystem against resource management errors that could otherwise lead to system instability or performance degradation.

Responsible

Linux

Reservation

05/01/2025

Disclosure

05/01/2025

Moderation

accepted

CPE

ready

EPSS

0.00141

KEV

no

Activities

very low

Sources

Want to stay up to date on a daily basis?

Enable the mail alert feature now!