-

CVE-2022-50875

EPSS 0.06%
Veröffentlicht 30.12.2025 12:23:16
Zuletzt bearbeitet 15.04.2026 00:35:42
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

of: overlay: fix null pointer dereferencing in find_dup_cset_node_entry() and find_dup_cset_prop()

In the Linux kernel, the following vulnerability has been resolved:

of: overlay: fix null pointer dereferencing in find_dup_cset_node_entry() and find_dup_cset_prop()

When kmalloc() fail to allocate memory in kasprintf(), fn_1 or fn_2 will
be NULL, and strcmp() will cause null pointer dereference.

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 9

CNA 2 VulnDex Vulnerability Enrichment 8

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version 2fe0e8769df9fed5098daea7db933bc414c329d7

Version < 9ec5781879b4535ad59b5354b385825378e45618

Status affected

Version 2fe0e8769df9fed5098daea7db933bc414c329d7

Version < 2b4af99b44861646013821019dd13a4ac48c0219

Status affected

Version 2fe0e8769df9fed5098daea7db933bc414c329d7

Version < ce1b3a41e7964cb8dd56a702a95dd90ad27f51cd

Status affected

Version 2fe0e8769df9fed5098daea7db933bc414c329d7

Version < ab5bb7bbacf531de8e32912cc2e21f906113cee8

Status affected

Version 2fe0e8769df9fed5098daea7db933bc414c329d7

Version < 71d88c7453ec3d2ceff98e18ce4d6354abd3b5b6

Status affected

Version 2fe0e8769df9fed5098daea7db933bc414c329d7

Version < ee9d7a0e754568180a2f8ebc4aad226278a9116f

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 5.0

Status affected

Version 0

Version < 5.0

Status unaffected

Version <= 5.4.*

Version 5.4.229

Status unaffected

Version <= 5.10.*

Version 5.10.163

Status unaffected

Version <= 5.15.*

Version 5.15.86

Status unaffected

Version <= 6.0.*

Version 6.0.16

Status unaffected

Version <= 6.1.*

Version 6.1.2

Status unaffected

Version <= *

Version 6.2

Status unaffected

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.06%	0.193

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

Es wurden noch keine Informationen zu CWE veröffentlicht.

https://git.kernel.org/stable/c/9ec5781879b4535ad59b5354b385825378e45618

https://git.kernel.org/stable/c/2b4af99b44861646013821019dd13a4ac48c0219

https://git.kernel.org/stable/c/ce1b3a41e7964cb8dd56a702a95dd90ad27f51cd

https://git.kernel.org/stable/c/ab5bb7bbacf531de8e32912cc2e21f906113cee8

https://git.kernel.org/stable/c/71d88c7453ec3d2ceff98e18ce4d6354abd3b5b6

https://git.kernel.org/stable/c/ee9d7a0e754568180a2f8ebc4aad226278a9116f

https://nvd.nist.gov/vuln/detail/CVE-2022-50875

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2022-50875

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2022-50875

EUVD