CVE-2022-48756

drm/msm/dsi: invalid parameter check in msm_dsi_phy_enable

Severity Score

"-"

*CVSS v-

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

Track

*SSVC

Descriptions

In the Linux kernel, the following vulnerability has been resolved:

drm/msm/dsi: invalid parameter check in msm_dsi_phy_enable

The function performs a check on the "phy" input parameter, however, it
is used before the check.

Initialize the "dev" variable after the sanity check to avoid a possible
NULL pointer dereference.

Addresses-Coverity-ID: 1493860 ("Null pointer dereference")

*Credits: N/A

CVSS Scores

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality

Integrity

Availability

* Common Vulnerability Scoring System

SSVC

Decision:Track

Exploitation

None

Automatable

Tech. Impact

Partial

* Organization's Worst-case Scenario

Timeline

2024-06-20 CVE Reserved
2024-06-20 CVE Published
2024-09-19 EPSS Updated
2024-11-04 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CAPEC

References (8)

URL	Tag	Source
https://git.kernel.org/stable/c/5c8290284402bf7d2c12269402b3177b899c78b7	Vuln. Introduced

URL	Date	SRC

URL	Date	SRC
https://git.kernel.org/stable/c/6d9f8ba28f3747ca0f910a363e46f1114856dbbe	2022-02-08
https://git.kernel.org/stable/c/ca63eeb70fcb53c42e1fe54e1735a54d8e7759fd	2022-02-08
https://git.kernel.org/stable/c/581317b1f001b7509041544d7019b75571daa100	2022-02-01
https://git.kernel.org/stable/c/79c0b5287ded74f4eacde4dfd8aa0a76cbd853b5	2022-02-01
https://git.kernel.org/stable/c/56480fb10b976581a363fd168dc2e4fbee87a1a7	2022-02-01
https://git.kernel.org/stable/c/2b7e7df1eacd280e561ede3e977853606871c951	2022-02-01
https://git.kernel.org/stable/c/5e761a2287234bc402ba7ef07129f5103bcd775c	2022-01-25

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.3 < 4.14.265 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.3 < 4.14.265"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.3 < 4.19.228 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.3 < 4.19.228"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.3 < 5.4.176 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.3 < 5.4.176"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.3 < 5.10.96 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.3 < 5.10.96"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.3 < 5.15.19 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.3 < 5.15.19"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.3 < 5.16.5 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.3 < 5.16.5"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.3 < 5.17 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.3 < 5.17"		en		Affected