CVE-2022-49060

In the Linux kernel, the following vulnerability has been resolved:

net/smc: Fix NULL pointer dereference in smc_pnet_find_ib()

dev_name() was called with dev.parent as argument but without to
NULL-check it before.
Solve this by checking the pointer before the call to dev_name().
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5.5 MEDIUM
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
LinuxCNA
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 3%
VendorProductVersion
linuxlinux_kernel
5.1 ≤
𝑥
< 5.4.190
linuxlinux_kernel
5.5 ≤
𝑥
< 5.10.112
linuxlinux_kernel
5.11 ≤
𝑥
< 5.15.35
linuxlinux_kernel
5.16 ≤
𝑥
< 5.17.4
linuxlinux_kernel
5.18:rc1
linuxlinux_kernel
5.18:rc2
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
linux
bullseye
5.10.223-1
fixed
bullseye (security)
5.10.234-1
fixed
bookworm
6.1.123-1
fixed
bookworm (security)
6.1.128-1
fixed
trixie
6.12.12-1
fixed
sid
6.12.16-1
fixed
Common Weakness Enumeration
References
https://git.kernel.org/stable/c/22025513ced3d599ee8b24169141c95cf2467a4a
https://git.kernel.org/stable/c/35b91e49bc80ca944a8679c3b139ddaf2f8eea0f
https://git.kernel.org/stable/c/3a523807f01455fe9a0c1a433f27cd4411ee400f
https://git.kernel.org/stable/c/a05f5e26cb8bb4d07e0595545fcad1bb406f0085
https://git.kernel.org/stable/c/d22f4f977236f97e01255a80bca2ea93a8094fc8