CVE-2022-48756

Summary

In the Linux kernel, the following vulnerability has been resolved:

drm/msm/dsi: invalid parameter check in msm_dsi_phy_enable

The function performs a check on the "phy" input parameter, however, it is used before the check.

Initialize the "dev" variable after the sanity check to avoid a possible NULL pointer dereference.

Addresses-Coverity-ID: 1493860 ("Null pointer dereference")

Affected Software

VendorProductVersion RangeStatus
LinuxLinux5c8290284402bf7d2c12269402b3177b899c78b7 < 6d9f8ba28f3747ca0f910a363e46f1114856dbbeaffected
LinuxLinux5c8290284402bf7d2c12269402b3177b899c78b7 < ca63eeb70fcb53c42e1fe54e1735a54d8e7759fdaffected
LinuxLinux5c8290284402bf7d2c12269402b3177b899c78b7 < 581317b1f001b7509041544d7019b75571daa100affected
LinuxLinux5c8290284402bf7d2c12269402b3177b899c78b7 < 79c0b5287ded74f4eacde4dfd8aa0a76cbd853b5affected
LinuxLinux5c8290284402bf7d2c12269402b3177b899c78b7 < 56480fb10b976581a363fd168dc2e4fbee87a1a7affected
LinuxLinux5c8290284402bf7d2c12269402b3177b899c78b7 < 2b7e7df1eacd280e561ede3e977853606871c951affected
LinuxLinux5c8290284402bf7d2c12269402b3177b899c78b7 < 5e761a2287234bc402ba7ef07129f5103bcd775caffected
LinuxLinux4.3affected
LinuxLinux0 < 4.3unaffected
LinuxLinux4.14.265 <= 4.14.*unaffected
LinuxLinux4.19.228 <= 4.19.*unaffected
LinuxLinux5.4.176 <= 5.4.*unaffected
LinuxLinux5.10.96 <= 5.10.*unaffected
LinuxLinux5.15.19 <= 5.15.*unaffected
LinuxLinux5.16.5 <= 5.16.*unaffected
LinuxLinux5.17 <= *unaffected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References