CVE-2022-49221

EPSS 0.03%
Veröffentlicht 26.02.2025 07:00:59
Zuletzt bearbeitet 01.10.2025 20:15:57
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

In the Linux kernel, the following vulnerability has been resolved:

drm/msm/dp: populate connector of struct dp_panel

DP CTS test case 4.2.2.6 has valid edid with bad checksum on purpose
and expect DP source return correct checksum. During drm edid read,
correct edid checksum is calculated and stored at
connector::real_edid_checksum.

The problem is struct dp_panel::connector never be assigned, instead the
connector is stored in struct msm_dp::connector. When we run compliance
testing test case 4.2.2.6 dp_panel_handle_sink_request() won't have a valid
edid set in struct dp_panel::edid so we'll try to use the connectors
real_edid_checksum and hit a NULL pointer dereference error because the
connector pointer is never assigned.

Changes in V2:
-- populate panel connector at msm_dp_modeset_init() instead of at dp_panel_read_sink_caps()

Changes in V3:
-- remove unhelpful kernel crash trace commit text
-- remove renaming dp_display parameter to dp

Changes in V4:
-- add more details to commit text

Changes in v10:
--  group into one series

Changes in v11:
-- drop drm/msm/dp: dp_link_parse_sink_count() return immediately if aux read

Signee-off-by: Kuogee Hsieh <quic_khsieh@quicinc.com>

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 8

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Linux ≫ Linux Kernel Version >= 5.10.67 < 5.10.110

Linux ≫ Linux Kernel Version >= 5.13.19 < 5.14

Linux ≫ Linux Kernel Version >= 5.14.6 < 5.15.33

Linux ≫ Linux Kernel Version >= 5.16 < 5.16.19

Linux ≫ Linux Kernel Version >= 5.17 < 5.17.2

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.03%	0.09

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	5.5	1.8	3.6	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
134c704f-9b21-4f2e-91b3-4a467353bcc0	5.5	1.8	3.6	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWE-476 NULL Pointer Dereference

The product dereferences a pointer that it expects to be valid but is NULL.

https://git.kernel.org/stable/c/104074ebc0c3f358dd1ee944fbcde92c6e5a21dd

Patch

https://git.kernel.org/stable/c/413c62697b61226a236c8b1f5cd64dcf42bcc12f

Patch

https://git.kernel.org/stable/c/5e602f5156910c7b19661699896cb6e3fb94fab9

Patch

https://git.kernel.org/stable/c/9525b8bcae8b99188990b56484799cf4b1b43786

Patch

https://git.kernel.org/stable/c/fbba600f432a360b42452fee79d1fb35d3aa8aeb

Patch

https://nvd.nist.gov/vuln/detail/CVE-2022-49221

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2022-49221

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2022-49221

EUVD