CVE-2022-49019
EUVD-2022-5390321.10.2024, 20:15
In the Linux kernel, the following vulnerability has been resolved: net: ethernet: nixge: fix NULL dereference In function nixge_hw_dma_bd_release() dereference of NULL pointer priv->rx_bd_v is possible for the case of its allocation failure in nixge_hw_dma_bd_init(). Move for() loop with priv->rx_bd_v dereference under the check for its validity. Found by Linux Verification Center (linuxtesting.org) with SVACE.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| linux | linux_kernel | 4.17 ≤ 𝑥 < 5.4.226 |
| linux | linux_kernel | 5.5 ≤ 𝑥 < 5.10.158 |
| linux | linux_kernel | 5.11 ≤ 𝑥 < 5.15.82 |
| linux | linux_kernel | 5.16 ≤ 𝑥 < 6.0.12 |
| linux | linux_kernel | 6.1:rc1 |
| linux | linux_kernel | 6.1:rc2 |
| linux | linux_kernel | 6.1:rc3 |
| linux | linux_kernel | 6.1:rc4 |
| linux | linux_kernel | 6.1:rc5 |
| linux | linux_kernel | 6.1:rc6 |
| linux | linux_kernel | 6.1:rc7 |
𝑥
= Vulnerable software versions
Debian Releases
openSUSE / SLES Releases
openSUSE Product | |||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
| kernel-64kb |
| ||||||||||
| kernel-azure |
| ||||||||||
| kernel-default |
| ||||||||||
| kernel-default-base |
| ||||||||||
| kernel-docs |
| ||||||||||
| kernel-macros |
| ||||||||||
| kernel-obs-build |
| ||||||||||
| kernel-preempt |
| ||||||||||
| kernel-source |
| ||||||||||
| kernel-source-azure |
| ||||||||||
| kernel-syms |
| ||||||||||
| kernel-syms-azure |
| ||||||||||
| kernel-zfcpdump |
| ||||||||||
| reiserfs-kmp-default |
|
Common Weakness Enumeration
References