Description

In the Linux kernel, the following vulnerability has been resolved: sfc: fix null pointer dereference in efx_hard_start_xmit Trying to get the channel from the tx_queue variable here is wrong because we can only be here if tx_queue is NULL, so we shouldn't dereference it. As the above comment in the code says, this is very unlikely to happen, but it's wrong anyway so let's fix it. I hit this issue because of a different bug that caused tx_queue to be NULL. If that happens, this is the error message that we get here: BUG: unable to handle kernel NULL pointer dereference at 0000000000000020 [...] RIP: 0010:efx_hard_start_xmit+0x153/0x170 [sfc]

INFO

Published Date :

2024-04-28T13:00:28.994Z

Last Modified :

2025-05-04T08:20:31.917Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2022-48648 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2022-48648.

URL Resource
https://git.kernel.org/stable/c/0a242eb2913a4aa3d6fbdb86559f27628e9466f3 cve-icon cve-icon
https://git.kernel.org/stable/c/8547c7bfc0617e7184e4da65b9b96681fcfe9998 cve-icon cve-icon
https://git.kernel.org/stable/c/b3b41d4d95d3822b2e459ecbc80d030ea6aec5e7 cve-icon cve-icon
https://git.kernel.org/stable/c/b3b952168ee1f220ba729fa100fd9d5aa752eb03 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2024042857-CVE-2022-48648-eaf8@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2022-48648 cve-icon
https://www.cve.org/CVERecord?id=CVE-2022-48648 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact