CVE-2022-50721

EPSS 0.02%
Veröffentlicht 24.12.2025 12:22:44
Zuletzt bearbeitet 29.12.2025 15:58:34
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

In the Linux kernel, the following vulnerability has been resolved:

dmaengine: qcom-adm: fix wrong calling convention for prep_slave_sg

The calling convention for pre_slave_sg is to return NULL on error and
provide an error log to the system. Qcom-adm instead provide error
pointer when an error occur. This indirectly cause kernel panic for
example for the nandc driver that checks only if the pointer returned by
device_prep_slave_sg is not NULL. Returning an error pointer makes nandc
think the device_prep_slave_sg function correctly completed and makes
the kernel panics later in the code.

While nandc is the one that makes the kernel crash, it was pointed out
that the real problem is qcom-adm not following calling convention for
that function.

To fix this, drop returning error pointer and return NULL with an error
log.

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 6

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version < 5653bd0200944e5803fa8e32dc36aa49931312f9

Version 5c9f8c2dbdbe53818bcde6aa6695e1331e5f841f

Status affected

Version < 9a041174c58a226e713f6cebd41eccec7a5cfa72

Version 5c9f8c2dbdbe53818bcde6aa6695e1331e5f841f

Status affected

Version < b9d2140c3badf4107973ad77c5a0ec3075705c85

Version 5c9f8c2dbdbe53818bcde6aa6695e1331e5f841f

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 5.11

Status affected

Version < 5.11

Version 0

Status unaffected

Version <= 5.19.*

Version 5.19.17

Status unaffected

Version <= 6.0.*

Version 6.0.3

Status unaffected

Version <= *

Version 6.1

Status unaffected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.02%	0.058

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

Es wurden noch keine Informationen zu CWE veröffentlicht.

https://git.kernel.org/stable/c/5653bd0200944e5803fa8e32dc36aa49931312f9

https://git.kernel.org/stable/c/9a041174c58a226e713f6cebd41eccec7a5cfa72

https://git.kernel.org/stable/c/b9d2140c3badf4107973ad77c5a0ec3075705c85

https://nvd.nist.gov/vuln/detail/CVE-2022-50721

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2022-50721

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2022-50721

EUVD