CVE-2022-49273

rtc: pl031: fix rtc features null pointer dereference

Severity Score

5.5

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

MITRE
RedHat

In the Linux kernel, the following vulnerability has been resolved: rtc: pl031: fix rtc features null pointer dereference When there is no interrupt line, rtc alarm feature is disabled. The clearing of the alarm feature bit was being done prior to allocations
of ldata->rtc device, resulting in a null pointer dereference. Clear RTC_FEATURE_ALARM after the rtc device is allocated.

A flaw was found in the rtc-pl031 module in the Linux kernel. The alarm feature bit was cleaned before device initialization, which caused a NULL pointer dereference when there was no interrupt line. This resulted in a system crash and a denial of service.

*Credits: N/A

CVSS Scores

redhat-cnalrv3.1 5.5

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

High

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2025-02-26 CVE Reserved
2025-02-26 CVE Published
2025-05-04 CVE Updated
2025-06-28 EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-476: NULL Pointer Dereference

CAPEC

References (7)

URL	Tag	Source
https://git.kernel.org/stable/c/d9b0dd54a1943f47a381a474f8ea2c94466110c0	Vuln. Introduced

URL	Date	SRC

URL	Date	SRC
https://git.kernel.org/stable/c/cd2722e411e8ab7e5ae41102f6925fa13dffdac5	2022-04-08
https://git.kernel.org/stable/c/d274ce4a3dfd0b9a292667535578359b865765cb	2022-04-08
https://git.kernel.org/stable/c/1b915703964f7e636961df04c540261dc55c6c70	2022-04-08
https://git.kernel.org/stable/c/ea6af39f3da50c86367a71eb3cc674ade3ed244c	2022-03-23

URL	Date	SRC
https://access.redhat.com/security/cve/CVE-2022-49273	2023-11-07
https://bugzilla.redhat.com/show_bug.cgi?id=2348294	2023-11-07

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.12 < 5.15.33 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.12 < 5.15.33"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.12 < 5.16.19 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.12 < 5.16.19"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.12 < 5.17.2 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.12 < 5.17.2"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.12 < 5.18 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.12 < 5.18"		en		Affected