-

CVE-2022-50218

EPSS 0.04%
Published 18.06.2025 11:03:54
Last modified 18.06.2025 13:47:40
Source 416baaa9-dc9f-4396-8d5f-8c081f
Teams watchlist Login
Open Login

In the Linux kernel, the following vulnerability has been resolved:

iio: light: isl29028: Fix the warning in isl29028_remove()

The driver use the non-managed form of the register function in
isl29028_remove(). To keep the release order as mirroring the ordering
in probe, the driver should use non-managed form in probe, too.

The following log reveals it:

[   32.374955] isl29028 0-0010: remove
[   32.376861] general protection fault, probably for non-canonical address 0xdffffc0000000006: 0000 [#1] PREEMPT SMP KASAN PTI
[   32.377676] KASAN: null-ptr-deref in range [0x0000000000000030-0x0000000000000037]
[   32.379432] RIP: 0010:kernfs_find_and_get_ns+0x28/0xe0
[   32.385461] Call Trace:
[   32.385807]  sysfs_unmerge_group+0x59/0x110
[   32.386110]  dpm_sysfs_remove+0x58/0xc0
[   32.386391]  device_del+0x296/0xe50
[   32.386959]  cdev_device_del+0x1d/0xd0
[   32.387231]  devm_iio_device_unreg+0x27/0xb0
[   32.387542]  devres_release_group+0x319/0x3d0
[   32.388162]  i2c_device_remove+0x93/0x1f0

Affected products Warnungen 0 Metrics 1 CWE 0 References 11

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

This information is available to logged-in users.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

VendorLinux

≫

Product Linux

Default Statusunaffected

Version < ca63d5abf404d2934e2ac03545350de7bb8c8e96

Version 2db5054ac28d4ab2eaa6c67e2d9f61fa5ba006b8

Status affected

Version < 359f3b150eab30805fe0e4e9d616887d7257a625

Version 2db5054ac28d4ab2eaa6c67e2d9f61fa5ba006b8

Status affected

Version < ed43fb20d3d1fca9d79db0d5faf4321a4dd58c23

Version 2db5054ac28d4ab2eaa6c67e2d9f61fa5ba006b8

Status affected

Version < fb1888205c0782f287e5dd4ffff1f665332e868c

Version 2db5054ac28d4ab2eaa6c67e2d9f61fa5ba006b8

Status affected

Version < fac589fb764699a4bcd288f6656b8cd0408ea968

Version 2db5054ac28d4ab2eaa6c67e2d9f61fa5ba006b8

Status affected

Version < 4f0ebfb4b9bfad2326c0b2c3cc7e37f4b9ee9eba

Version 2db5054ac28d4ab2eaa6c67e2d9f61fa5ba006b8

Status affected

Version < a1135205b0affd255510775a27df571aca84ab4b

Version 2db5054ac28d4ab2eaa6c67e2d9f61fa5ba006b8

Status affected

Version < 06674fc7c003b9d0aa1d37fef7ab2c24802cc6ad

Version 2db5054ac28d4ab2eaa6c67e2d9f61fa5ba006b8

Status affected

VendorLinux

≫

Product Linux

Default Statusaffected

Version 4.11

Status affected

Version < 4.11

Version 0

Status unaffected

Version <= 4.14.*

Version 4.14.291

Status unaffected

Version <= 4.19.*

Version 4.19.256

Status unaffected

Version <= 5.4.*

Version 5.4.211

Status unaffected

Version <= 5.10.*

Version 5.10.137

Status unaffected

Version <= 5.15.*

Version 5.15.61

Status unaffected

Version <= 5.18.*

Version 5.18.18

Status unaffected

Version <= 5.19.*

Version 5.19.2

Status unaffected

Version <= *

Version 6.0

Status unaffected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.04%	0.094

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string

https://git.kernel.org/stable/c/ca63d5abf404d2934e2ac03545350de7bb8c8e96

https://git.kernel.org/stable/c/359f3b150eab30805fe0e4e9d616887d7257a625

https://git.kernel.org/stable/c/ed43fb20d3d1fca9d79db0d5faf4321a4dd58c23

https://git.kernel.org/stable/c/fb1888205c0782f287e5dd4ffff1f665332e868c

https://git.kernel.org/stable/c/fac589fb764699a4bcd288f6656b8cd0408ea968

https://git.kernel.org/stable/c/4f0ebfb4b9bfad2326c0b2c3cc7e37f4b9ee9eba

https://git.kernel.org/stable/c/a1135205b0affd255510775a27df571aca84ab4b

https://git.kernel.org/stable/c/06674fc7c003b9d0aa1d37fef7ab2c24802cc6ad

https://nvd.nist.gov/vuln/detail/CVE-2022-50218

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2022-50218

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2022-50218

EUVD