CVE-2022-50181
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
virtio-gpu: fix a missing check to avoid NULL dereference
'cache_ent' could be set NULL inside virtio_gpu_cmd_get_capset() and it will lead to a NULL dereference by a lately use of it (i.e., ptr = cache_ent->caps_cache). Fix it with a NULL check.
[ kraxel: minor codestyle fixup ]
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 62fb7a5e10962ac6ae2a2d2dbd3aedcb2a3e3257 < 259773fc874258606c0121767a4a27466ff337eb | affected |
| Linux | Linux | 62fb7a5e10962ac6ae2a2d2dbd3aedcb2a3e3257 < 39caef09666c1d8274abf9472c72bcac236dc5fb | affected |
| Linux | Linux | 62fb7a5e10962ac6ae2a2d2dbd3aedcb2a3e3257 < adbdd21983fa292e53aec3eab97306b2961ea887 | affected |
| Linux | Linux | 62fb7a5e10962ac6ae2a2d2dbd3aedcb2a3e3257 < 367882a5a9448b5e1ba756125308092d614cb96c | affected |
| Linux | Linux | 62fb7a5e10962ac6ae2a2d2dbd3aedcb2a3e3257 < bd63f11f4c3c46afec07d821f74736161ff6e526 | affected |
| Linux | Linux | 4.4 | affected |
| Linux | Linux | 0 < 4.4 | unaffected |
| Linux | Linux | 5.10.137 <= 5.10.* | unaffected |
| Linux | Linux | 5.15.61 <= 5.15.* | unaffected |
| Linux | Linux | 5.18.18 <= 5.18.* | unaffected |
| Linux | Linux | 5.19.2 <= 5.19.* | unaffected |
| Linux | Linux | 6.0 <= * | unaffected |
Weaknesses
References
- https://git.kernel.org/stable/c/259773fc874258606c0121767a4a27466ff337eb
- https://git.kernel.org/stable/c/39caef09666c1d8274abf9472c72bcac236dc5fb
- https://git.kernel.org/stable/c/adbdd21983fa292e53aec3eab97306b2961ea887
- https://git.kernel.org/stable/c/367882a5a9448b5e1ba756125308092d614cb96c
- https://git.kernel.org/stable/c/bd63f11f4c3c46afec07d821f74736161ff6e526
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.