Lucene search

K

GoogleOSV:UBUNTU-CVE-2022-48756

HistoryJun 20, 2024 - 12:15 p.m.

UBUNTU-CVE-2022-48756

2024-06-2012:15:00

Google

osv.dev

linux kernel

vulnerability

drm

msm/dsi

parameter check

null pointer.

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

AI Score

6.5

Confidence

Low

In the Linux kernel, the following vulnerability has been resolved: drm/msm/dsi: invalid parameter check in msm_dsi_phy_enable The function performs a check on the “phy” input parameter, however, it is used before the check. Initialize the “dev” variable after the sanity check to avoid a possible NULL pointer dereference. Addresses-Coverity-ID: 1493860 (“Null pointer dereference”)

References

git.kernel.org/linus/5e761a2287234bc402ba7ef07129f5103bcd775c

git.kernel.org/stable/c/2b7e7df1eacd280e561ede3e977853606871c951

git.kernel.org/stable/c/56480fb10b976581a363fd168dc2e4fbee87a1a7

git.kernel.org/stable/c/581317b1f001b7509041544d7019b75571daa100

git.kernel.org/stable/c/5e761a2287234bc402ba7ef07129f5103bcd775c

git.kernel.org/stable/c/6d9f8ba28f3747ca0f910a363e46f1114856dbbe

git.kernel.org/stable/c/79c0b5287ded74f4eacde4dfd8aa0a76cbd853b5

git.kernel.org/stable/c/ca63eeb70fcb53c42e1fe54e1735a54d8e7759fd

ubuntu.com/security/CVE-2022-48756

www.cve.org/CVERecord?id=CVE-2022-48756

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

AI Score

6.5

Confidence

Low

Related for OSV:UBUNTU-CVE-2022-48756

nvd1 vulnrichment1 redhatcve1 ubuntucve1 osv13 cve1 debiancve1 cvelist1 redos1 openvas5 nessus10