CVE-2022-49319

MEDIUM

Linux Kernel - NULL Pointer Dereference in ARM SMMU-v3 IOMMU Resource Handling

Title source: llm
STIX 2.1

Description

In the Linux kernel, the following vulnerability has been resolved: iommu/arm-smmu-v3: check return value after calling platform_get_resource() It will cause null-ptr-deref if platform_get_resource() returns NULL, we need check the return value.

References (5)

Core 5

Scores

CVSS v3 5.5
EPSS 0.0024
EPSS Percentile 15.3%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact partial

Details

CWE
CWE-476
Status published
Products (17)
linux/Kernel 4.2.0 - 5.10.122linux
linux/Kernel 5.11.0 - 5.15.47linux
linux/Kernel 5.16.0 - 5.17.15linux
linux/Kernel 5.18.0 - 5.18.4linux
Linux/Linux < 4.2
Linux/Linux 4.2
Linux/Linux 48ec83bcbcf5090fcdf74a6168f161d247492979 - 54c1e0e3bbcab2abe25b2874a43050ae5df87831
Linux/Linux 48ec83bcbcf5090fcdf74a6168f161d247492979 - 54cf47da0c7532d151d76e5d63f5936191698c44
Linux/Linux 48ec83bcbcf5090fcdf74a6168f161d247492979 - b131fa8c1d2afd05d0b7598621114674289c2fbb
Linux/Linux 48ec83bcbcf5090fcdf74a6168f161d247492979 - db728a891f9177b044aaca89b678f6b5e24d5cc3
... and 7 more
Published Feb 26, 2025
Tracked Since Feb 18, 2026