5.5

CVE-2022-49046

i2c: dev: check return value when calling dev_set_name()

In the Linux kernel, the following vulnerability has been resolved:

i2c: dev: check return value when calling dev_set_name()

If dev_set_name() fails, the dev_name() is null, check the return
value of dev_set_name() to avoid the null-ptr-deref.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version >= 4.4.225 < 4.5
LinuxLinux Kernel Version >= 4.9.225 < 4.10
LinuxLinux Kernel Version >= 4.14.182 < 4.15
LinuxLinux Kernel Version >= 4.19.125 < 4.20
LinuxLinux Kernel Version >= 5.4.43 < 5.5
LinuxLinux Kernel Version >= 5.6.15 < 5.15.35
LinuxLinux Kernel Version >= 5.16 < 5.17.4
LinuxLinux Kernel Version5.18 Updaterc1
LinuxLinux Kernel Version5.18 Updaterc2
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.25% 0.163
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CWE-476 NULL Pointer Dereference

The product dereferences a pointer that it expects to be valid but is NULL.

https://git.kernel.org/stable/c/2f345bb14ad4744950499ff222e2899209297afa
Patch
https://git.kernel.org/stable/c/993eb48fa199b5f476df8204e652eff63dd19361
Patch
https://git.kernel.org/stable/c/c74d77a2d07744147d734138acd6ce9dba715e5d
Patch
https://git.kernel.org/stable/c/2e539b17d4cbe5fb8b5152dd9a6e4a8828f97db2
https://lists.debian.org/debian-lts-announce/2025/05/msg00030.html