CVE-2022-49141

Summary

In the Linux kernel, the following vulnerability has been resolved:

net: dsa: felix: fix possible NULL pointer dereference

As the possible failure of the allocation, kzalloc() may return NULL pointer. Therefore, it should be better to check the 'sgi' in order to prevent the dereference of NULL pointer.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux23ae3a7877718931474684ef4fbbaf1d1511ee84 < b7ff8b5e75d4e91ec8c62d621aac8dfb84c57aa9affected
LinuxLinux23ae3a7877718931474684ef4fbbaf1d1511ee84 < 866b7a278cdb51eb158cd8513bc7438fc857804aaffected
LinuxLinux5.17affected
LinuxLinux0 < 5.17unaffected
LinuxLinux5.17.3 <= 5.17.*unaffected
LinuxLinux5.18 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References