-

CVE-2022-50244

In the Linux kernel, the following vulnerability has been resolved:

cxl: fix possible null-ptr-deref in cxl_pci_init_afu|adapter()

If device_register() fails in cxl_pci_afu|adapter(), the device
is not added, device_unregister() can not be called in the error
path, otherwise it will cause a null-ptr-deref because of removing
not added device.

As comment of device_register() says, it should use put_device() to give
up the reference in the error path. So split device_unregister() into
device_del() and put_device(), then goes to put dev when register fails.

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD
This information is available to logged-in users.
Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).
VendorLinux
Product Linux
Default Statusunaffected
Version < 82e68432668ae75b4c814d160f6987ecb0681273
Version f204e0b8cedd7da1dfcfd05ed6b7692737e24029
Status affected
Version < 82e5481428faf11c79b9c094dd24a1849bbf64ac
Version f204e0b8cedd7da1dfcfd05ed6b7692737e24029
Status affected
Version < c4b2e35df919d99bbbed033c2fa0b607f9f463b5
Version f204e0b8cedd7da1dfcfd05ed6b7692737e24029
Status affected
Version < 361412dae1690d4b5df6f92fc943cdc773c95cbc
Version f204e0b8cedd7da1dfcfd05ed6b7692737e24029
Status affected
Version < 0f63c0ddc2ea20d783d29243f4dbe0f9e95dfdec
Version f204e0b8cedd7da1dfcfd05ed6b7692737e24029
Status affected
Version < 22511eefa61db26e12c97dd7ada3071dbdfcb004
Version f204e0b8cedd7da1dfcfd05ed6b7692737e24029
Status affected
Version < 139abd4c626a6f7ce02789ed5f73aa2256e0542b
Version f204e0b8cedd7da1dfcfd05ed6b7692737e24029
Status affected
Version < 2f5fd31b2f24b9b8a80ab566fd8c4e1e94cb4339
Version f204e0b8cedd7da1dfcfd05ed6b7692737e24029
Status affected
Version < 02cd3032b154fa02fdf90e7467abaeed889330b2
Version f204e0b8cedd7da1dfcfd05ed6b7692737e24029
Status affected
VendorLinux
Product Linux
Default Statusaffected
Version 3.18
Status affected
Version < 3.18
Version 0
Status unaffected
Version <= 4.9.*
Version 4.9.337
Status unaffected
Version <= 4.14.*
Version 4.14.303
Status unaffected
Version <= 4.19.*
Version 4.19.270
Status unaffected
Version <= 5.4.*
Version 5.4.229
Status unaffected
Version <= 5.10.*
Version 5.10.163
Status unaffected
Version <= 5.15.*
Version 5.15.86
Status unaffected
Version <= 6.0.*
Version 6.0.16
Status unaffected
Version <= 6.1.*
Version 6.1.2
Status unaffected
Version <= *
Version 6.2
Status unaffected
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 0.04% 0.126
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string