CVE-2022-48708

pinctrl: single: fix potential NULL dereference

Severity Score

"-"

*CVSS v-

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

Track

*SSVC

Descriptions

In the Linux kernel, the following vulnerability has been resolved:

pinctrl: single: fix potential NULL dereference

Added checking of pointer "function" in pcs_set_mux().
pinmux_generic_get_function() can return NULL and the pointer
"function" was dereferenced without checking against NULL.

Found by Linux Verification Center (linuxtesting.org) with SVACE.

En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: pinctrl: single: corrige una posible desreferencia NULL. Se agregó la verificación de la "función" del puntero en pcs_set_mux(). pinmux_generic_get_function() puede devolver NULL y se eliminó la referencia al puntero "función" sin compararlo con NULL. Encontrado por el Centro de verificación de Linux (linuxtesting.org) con SVACE.

*Credits: N/A

CVSS Scores

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality

Integrity

Availability

* Common Vulnerability Scoring System

SSVC

Decision:Track

Exploitation

None

Automatable

Tech. Impact

Partial

* Organization's Worst-case Scenario

Timeline

2024-05-03 CVE Reserved
2024-05-21 CVE Published
2024-05-22 EPSS Updated
2024-11-04 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CAPEC

References (8)

URL	Tag	Source
https://git.kernel.org/stable/c/571aec4df5b72a80f80d1e524da8fbd7ff525c98	Vuln. Introduced

URL	Date	SRC

URL	Date	SRC
https://git.kernel.org/stable/c/1177bdafe87cbe543a2dc48a9bbac265aa5864db	2023-02-22
https://git.kernel.org/stable/c/e671e63587c92b3fd767cf82e73129f6d5feeb33	2023-02-22
https://git.kernel.org/stable/c/2b763f7de108cb1a5ad5ed08e617d677341947cb	2023-02-22
https://git.kernel.org/stable/c/6e2a0521e4e84a2698f2da3950fb5c5496a4d208	2023-02-15
https://git.kernel.org/stable/c/71668706fbe7d20e6f172fa3287fa8aac1b56c26	2023-02-14
https://git.kernel.org/stable/c/bcc487001a15f71f103d102cba4ac8145d7a68f2	2023-02-14
https://git.kernel.org/stable/c/d2d73e6d4822140445ad4a7b1c6091e0f5fe703b	2023-01-27

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.11 < 4.14.306 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.11 < 4.14.306"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.11 < 4.19.273 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.11 < 4.19.273"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.11 < 5.4.232 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.11 < 5.4.232"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.11 < 5.10.168 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.11 < 5.10.168"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.11 < 5.15.94 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.11 < 5.15.94"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.11 < 6.1.12 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.11 < 6.1.12"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.11 < 6.2 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.11 < 6.2"		en		Affected