CVE-2022-49060

Summary

In the Linux kernel, the following vulnerability has been resolved:

net/smc: Fix NULL pointer dereference in smc_pnet_find_ib()

dev_name() was called with dev.parent as argument but without to NULL-check it before. Solve this by checking the pointer before the call to dev_name().

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxaf5f60c7e3d593c2fa31b9a62c16eae75f074de3 < a05f5e26cb8bb4d07e0595545fcad1bb406f0085affected
LinuxLinuxaf5f60c7e3d593c2fa31b9a62c16eae75f074de3 < 35b91e49bc80ca944a8679c3b139ddaf2f8eea0faffected
LinuxLinuxaf5f60c7e3d593c2fa31b9a62c16eae75f074de3 < 3a523807f01455fe9a0c1a433f27cd4411ee400faffected
LinuxLinuxaf5f60c7e3d593c2fa31b9a62c16eae75f074de3 < 22025513ced3d599ee8b24169141c95cf2467a4aaffected
LinuxLinuxaf5f60c7e3d593c2fa31b9a62c16eae75f074de3 < d22f4f977236f97e01255a80bca2ea93a8094fc8affected
LinuxLinux5.1affected
LinuxLinux0 < 5.1unaffected
LinuxLinux5.4.190 <= 5.4.*unaffected
LinuxLinux5.10.112 <= 5.10.*unaffected
LinuxLinux5.15.35 <= 5.15.*unaffected
LinuxLinux5.17.4 <= 5.17.*unaffected
LinuxLinux5.18 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References