CVE-2022-49459

MEDIUM

Linux Kernel 5.1-5.18.3 - NULL Pointer Dereference in sr_thermal_probe

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: thermal/drivers/broadcom: Fix potential NULL dereference in sr_thermal_probe platform_get_resource() may return NULL, add proper check to avoid potential NULL dereferencing.

References (6)

Core 6

Core References

Patch

https://git.kernel.org/stable/c/b3461ccaa5d2588568d865faee285512ad448049

Patch

https://git.kernel.org/stable/c/79098339ac2065f4b4352ef5921628970b6f47e6

Patch

https://git.kernel.org/stable/c/ef1235c6514a58f274246cf4a2d5f4e40af539ce

Patch

https://git.kernel.org/stable/c/ee9b6b02e8c140323ed46d6602d805ea735c7719

Patch

https://git.kernel.org/stable/c/61621e042c22b47d1eadee617bdd26835294b425

Patch

https://git.kernel.org/stable/c/e20d136ec7d6f309989c447638365840d3424c8e

Scores

CVSS v3 5.5

EPSS 0.0025

EPSS Percentile 15.9%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-476

Status published

Products (20)

linux/Kernel 5.1.0 - 5.4.198linux

linux/Kernel 5.11.0 - 5.15.46linux

linux/Kernel 5.16.0 - 5.17.14linux

linux/Kernel 5.18.0 - 5.18.3linux

linux/Kernel 5.5.0 - 5.10.121linux

Linux/Linux < 5.1

Linux/Linux 250e211057c7237dc75634b1372a1a3bd58dcd96 - 61621e042c22b47d1eadee617bdd26835294b425

Linux/Linux 250e211057c7237dc75634b1372a1a3bd58dcd96 - 79098339ac2065f4b4352ef5921628970b6f47e6

Linux/Linux 250e211057c7237dc75634b1372a1a3bd58dcd96 - b3461ccaa5d2588568d865faee285512ad448049

Linux/Linux 250e211057c7237dc75634b1372a1a3bd58dcd96 - e20d136ec7d6f309989c447638365840d3424c8e

... and 10 more

Published Feb 26, 2025

Tracked Since Feb 18, 2026