GoogleOSV:CVE-2022-48756CVE-2022-48756
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
AI Score
Confidence
High
EPSS
Percentile
5.1%
In the Linux kernel, the following vulnerability has been resolved:
drm/msm/dsi: invalid parameter check in msm_dsi_phy_enable
The function performs a check on the “phy” input parameter, however, it
is used before the check.
Initialize the “dev” variable after the sanity check to avoid a possible
NULL pointer dereference.
Addresses-Coverity-ID: 1493860 (“Null pointer dereference”)
References
git.kernel.org/stable/c/2b7e7df1eacd280e561ede3e977853606871c951
git.kernel.org/stable/c/56480fb10b976581a363fd168dc2e4fbee87a1a7
git.kernel.org/stable/c/581317b1f001b7509041544d7019b75571daa100
git.kernel.org/stable/c/5e761a2287234bc402ba7ef07129f5103bcd775c
git.kernel.org/stable/c/6d9f8ba28f3747ca0f910a363e46f1114856dbbe
git.kernel.org/stable/c/79c0b5287ded74f4eacde4dfd8aa0a76cbd853b5
git.kernel.org/stable/c/ca63eeb70fcb53c42e1fe54e1735a54d8e7759fd
security-tracker.debian.org/tracker/CVE-2022-48756
Related
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
AI Score
Confidence
High
EPSS
Percentile
5.1%