5.5

CVE-2022-49832

pinctrl: devicetree: fix null pointer dereferencing in pinctrl_dt_to_map

In the Linux kernel, the following vulnerability has been resolved:

pinctrl: devicetree: fix null pointer dereferencing in pinctrl_dt_to_map

Here is the BUG report by KASAN about null pointer dereference:

BUG: KASAN: null-ptr-deref in strcmp+0x2e/0x50
Read of size 1 at addr 0000000000000000 by task python3/2640
Call Trace:
 strcmp
 __of_find_property
 of_find_property
 pinctrl_dt_to_map

kasprintf() would return NULL pointer when kmalloc() fail to allocate.
So directly return ENOMEM, if kasprintf() return NULL pointer.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version >= 3.5 < 4.9.334
LinuxLinux Kernel Version >= 4.10 < 4.14.300
LinuxLinux Kernel Version >= 4.15 < 4.19.267
LinuxLinux Kernel Version >= 4.20 < 5.4.225
LinuxLinux Kernel Version >= 5.5 < 5.10.156
LinuxLinux Kernel Version >= 5.11 < 5.15.80
LinuxLinux Kernel Version >= 5.16 < 6.0.10
LinuxLinux Kernel Version6.1 Updaterc1
LinuxLinux Kernel Version6.1 Updaterc2
LinuxLinux Kernel Version6.1 Updaterc3
LinuxLinux Kernel Version6.1 Updaterc4
LinuxLinux Kernel Version6.1 Updaterc5
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.19% 0.084
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CWE-476 NULL Pointer Dereference

The product dereferences a pointer that it expects to be valid but is NULL.

https://git.kernel.org/stable/c/aaf552c5d53abe4659176e099575fe870d2e4768
Patch
https://git.kernel.org/stable/c/b4d9f55cd38435358bc16d580612bc0d798d7b4c
Patch
https://git.kernel.org/stable/c/a988dcd3dd9e691c5ccc3324b209688f3b5453e9
Patch
https://git.kernel.org/stable/c/040f726fecd88121f3b95e70369785ad452dddf9
Patch
https://git.kernel.org/stable/c/777430aa4ddccaa5accec6db90ffc1d47f00d471
Patch
https://git.kernel.org/stable/c/97e5b508e96176f1a73888ed89df396d7041bfcb
Patch
https://git.kernel.org/stable/c/5834a3a98cd266ad35a229923c0adbd0addc8d68
Patch
https://git.kernel.org/stable/c/91d5c5060ee24fe8da88cd585bb43b843d2f0dce
Patch