Description

In the Linux kernel, the following vulnerability has been resolved: pinctrl: ralink: Check for null return of devm_kcalloc Because of the possible failure of the allocation, data->domains might be NULL pointer and will cause the dereference of the NULL pointer later. Therefore, it might be better to check it and directly return -ENOMEM without releasing data manually if fails, because the comment of the devm_kmalloc() says "Memory allocated with this function is automatically freed on driver detach.".

INFO

Published Date :

2025-02-26T02:23:32.309Z

Last Modified :

2025-10-01T19:36:51.576Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2022-49608 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2022-49608.

URL Resource
https://git.kernel.org/stable/c/13596e6c9e541e90e5fc2c52b23f08b951370da9 cve-icon cve-icon
https://git.kernel.org/stable/c/44016a85419ca0d4f1e4d0127b330f8e4e2a57d0 cve-icon cve-icon
https://git.kernel.org/stable/c/5595d30c4dc27d939635c3188c68203b6ece1711 cve-icon cve-icon
https://git.kernel.org/stable/c/5694b162f275fb9a9f89422701b2b963be11e496 cve-icon cve-icon
https://git.kernel.org/stable/c/6194c021496addc11763d1ffa89ce5751889fe3c cve-icon cve-icon
https://git.kernel.org/stable/c/c3b821e8e406d5650e587b7ac624ac24e9b780a8 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2025022613-CVE-2022-49608-3814@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2022-49608 cve-icon
https://www.cve.org/CVERecord?id=CVE-2022-49608 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact