CVE-2022-49202

Опубликовано: 26 фев. 2025

Источник: redhat

CVSS3: 6.1

Описание

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_uart: add missing NULL check in h5_enqueue Syzbot hit general protection fault in __pm_runtime_resume(). The problem was in missing NULL check. hu->serdev can be NULL and we should not blindly pass &serdev->dev somewhere, since it will cause GPF.

Затронутые пакеты

Платформа	Пакет	Состояние
Red Hat Enterprise Linux 10	kernel	Not affected
Red Hat Enterprise Linux 6	kernel	Not affected
Red Hat Enterprise Linux 7	kernel	Out of support scope
Red Hat Enterprise Linux 7	kernel-rt	Out of support scope
Red Hat Enterprise Linux 8	kernel	Not affected
Red Hat Enterprise Linux 8	kernel-rt	Not affected
Red Hat Enterprise Linux 9	kernel	Not affected
Red Hat Enterprise Linux 9	kernel-rt	Not affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

Дефект:

CWE-476

https://bugzilla.redhat.com/show_bug.cgi?id=2348041kernel: Bluetooth: hci_uart: add missing NULL check in h5_enqueue

6.1 Medium

CVSS3

Связанные уязвимости

CVE-2022-49202

CVSS3: 5.5

ubuntu

12 месяцев назад

CVE-2022-49202

CVSS3: 5.5

nvd

12 месяцев назад

CVE-2022-49202

CVSS3: 5.5

debian

12 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: B ...

GHSA-qq34-m9w6-mvqp

CVSS3: 5.5

github

5 месяцев назад

SUSE-SU-2025:1241-1

suse-cvrf

10 месяцев назад

Security update for the Linux Kernel

6.1 Medium

CVSS3