CVE-2022-48708

Summary

In the Linux kernel, the following vulnerability has been resolved:

pinctrl: single: fix potential NULL dereference

Added checking of pointer "function" in pcs_set_mux(). pinmux_generic_get_function() can return NULL and the pointer "function" was dereferenced without checking against NULL.

Found by Linux Verification Center (linuxtesting.org) with SVACE.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux571aec4df5b72a80f80d1e524da8fbd7ff525c98 < 1177bdafe87cbe543a2dc48a9bbac265aa5864dbaffected
LinuxLinux571aec4df5b72a80f80d1e524da8fbd7ff525c98 < e671e63587c92b3fd767cf82e73129f6d5feeb33affected
LinuxLinux571aec4df5b72a80f80d1e524da8fbd7ff525c98 < 2b763f7de108cb1a5ad5ed08e617d677341947cbaffected
LinuxLinux571aec4df5b72a80f80d1e524da8fbd7ff525c98 < 6e2a0521e4e84a2698f2da3950fb5c5496a4d208affected
LinuxLinux571aec4df5b72a80f80d1e524da8fbd7ff525c98 < 71668706fbe7d20e6f172fa3287fa8aac1b56c26affected
LinuxLinux571aec4df5b72a80f80d1e524da8fbd7ff525c98 < bcc487001a15f71f103d102cba4ac8145d7a68f2affected
LinuxLinux571aec4df5b72a80f80d1e524da8fbd7ff525c98 < d2d73e6d4822140445ad4a7b1c6091e0f5fe703baffected
LinuxLinux4.11affected
LinuxLinux0 < 4.11unaffected
LinuxLinux4.14.306 <= 4.14.*unaffected
LinuxLinux4.19.273 <= 4.19.*unaffected
LinuxLinux5.4.232 <= 5.4.*unaffected
LinuxLinux5.10.168 <= 5.10.*unaffected
LinuxLinux5.15.94 <= 5.15.*unaffected
LinuxLinux6.1.12 <= 6.1.*unaffected
LinuxLinux6.2 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References