CVE-2022-49072

gpio: Restrict usage of GPIO chip irq members before initialization

Severity Score

5.5

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

MITRE
RedHat

In the Linux kernel, the following vulnerability has been resolved: gpio: Restrict usage of GPIO chip irq members before initialization GPIO chip irq members are exposed before they could be completely
initialized and this leads to race conditions. One such issue was observed for the gc->irq.domain variable which
was accessed through the I2C interface in gpiochip_to_irq() before
it could be initialized by gpiochip_add_irqchip(). This resulted in
Kernel NULL pointer dereference. Following are the logs for reference :- kernel: Call Trace:
kernel: gpiod_to_irq+0x53/0x70
kernel: acpi_dev_gpio_irq_get_by+0x113/0x1f0
kernel: i2c_acpi_get_irq+0xc0/0xd0
kernel: i2c_device_probe+0x28a/0x2a0
kernel: really_probe+0xf2/0x460
kernel: RIP: 0010:gpiochip_to_irq+0x47/0xc0 To avoid such scenarios, restrict usage of GPIO chip irq members before
they are completely initialized.

A flaw was found in the GPIO support in the Linux kernel. The GPIO chip IRQ members are exposed before they are completely initialized, potentially causing a NULL pointer dereference, resulting in a system crash and a denial of service.

*Credits: N/A

CVSS Scores

redhat-cnalrv3.1 5.5

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

High

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2025-02-26 CVE Reserved
2025-02-26 CVE Published
2025-05-04 CVE Updated
2025-06-28 EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-476: NULL Pointer Dereference

CAPEC

References (7)

URL	Tag	Source

URL	Date	SRC

URL	Date	SRC
https://git.kernel.org/stable/c/7e88a50704b0c49ad3f2d11e8b963341cf68a89f	2022-04-13
https://git.kernel.org/stable/c/0912cf021fb5749372b3782611d8b1de4986c13a	2022-04-13
https://git.kernel.org/stable/c/2c1fa3614795e2b24da1ba95de0b27b8f6ea4537	2022-04-13
https://git.kernel.org/stable/c/f8dea54f74cae8c2e4d7b2952e8fed7743a85c87	2022-04-13
https://git.kernel.org/stable/c/5467801f1fcbdc46bc7298a84dbf3ca1ff2a7320	2022-04-04

URL	Date	SRC
https://access.redhat.com/security/cve/CVE-2022-49072	2023-05-09
https://bugzilla.redhat.com/show_bug.cgi?id=2348209	2023-05-09

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				< 5.10.111 Search vendor "Linux" for product "Linux Kernel" and version " < 5.10.111"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				< 5.15.34 Search vendor "Linux" for product "Linux Kernel" and version " < 5.15.34"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				< 5.16.20 Search vendor "Linux" for product "Linux Kernel" and version " < 5.16.20"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				< 5.17.3 Search vendor "Linux" for product "Linux Kernel" and version " < 5.17.3"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				< 5.18 Search vendor "Linux" for product "Linux Kernel" and version " < 5.18"		en		Affected