CVE-2022-49010

MEDIUM EPSS 14.4%
Published Oct 21, 20241y ago · Modified Jun 17, 20262w ago
5.5 CVSS 3.1
Medium
Find Similar
Published Oct 21, 2024 1y ago
Last Modified Jun 17, 2026 2w ago

Description

In the Linux kernel, the following vulnerability has been resolved: hwmon: (coretemp) Check for null before removing sysfs attrs If coretemp_add_core() gets an error then pdata->core_data[indx] is already NULL and has been kfreed. Don't pass that to sysfs_remove_group() as that will crash in sysfs_remove_group(). [Shortened for readability] [91854.020159] sysfs: cannot create duplicate filename '/devices/platform/coretemp.0/hwmon/hwmon2/temp20_label' <cpu offline> [91855.126115] BUG: kernel NULL pointer dereference, address: 0000000000000188 [91855.165103] #PF: supervisor read access in kernel mode [91855.194506] #PF: error_code(0x0000) - not-present page [91855.224445] PGD 0 P4D 0 [91855.238508] Oops: 0000 [#1] PREEMPT SMP PTI ... [91855.342716] RIP: 0010:sysfs_remove_group+0xc/0x80 ... [91855.796571] Call Trace: [91855.810524] coretemp_cpu_offline+0x12b/0x1dd [coretemp] [91855.841738] ? coretemp_cpu_online+0x180/0x180 [coretemp] [91855.871107] cpuhp_invoke_callback+0x105/0x4b0 [91855.893432] cpuhp_thread_fun+0x8e/0x150 ... Fix this by checking for NULL first.

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
14.4% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-476 NULL Pointer Dereference Memory Safety

Affected Products 14

VendorProductVersionRange
linuxlinux_kernel*≥3.0  –  <4.9.335
linuxlinux_kernel*≥4.10  –  <4.14.301
linuxlinux_kernel*≥4.15  –  <4.19.268
linuxlinux_kernel*≥4.20  –  <5.4.226
linuxlinux_kernel*≥5.5  –  <5.10.158
linuxlinux_kernel*≥5.11  –  <5.15.82
linuxlinux_kernel*≥5.16  –  <6.0.12
linuxlinux_kernel6.1any
linuxlinux_kernel6.1any
linuxlinux_kernel6.1any
linuxlinux_kernel6.1any
linuxlinux_kernel6.1any
linuxlinux_kernel6.1any
linuxlinux_kernel6.1any

References 8

  • git.kernel.org https://git.kernel.org/stable/c/070d5ea4a0592a37ad96ce7f7b6b024f90bb009f
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/280110db1a7d62ad635b103bafc3ae96e8bef75c
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/7692700ac818866d138a8de555130a6e70e6ac16
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/89eecabe6a47403237f45aafd7d24f93cb973653
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/a89ff5f5cc64b9fe7a992cf56988fd36f56ca82a
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ae6c8b6e5d5628df1c475c0a8fca1465e205c95b
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/f06e0cd01eab954bd5f2190c9faa79bb5357e05b
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/fb503d077ff7b43913503eaf72995d1239028b99
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/070d5ea4a0592a37ad96ce7f7b6b024f90bb009f
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/280110db1a7d62ad635b103bafc3ae96e8bef75c
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/7692700ac818866d138a8de555130a6e70e6ac16
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/89eecabe6a47403237f45aafd7d24f93cb973653
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/a89ff5f5cc64b9fe7a992cf56988fd36f56ca82a
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ae6c8b6e5d5628df1c475c0a8fca1465e205c95b
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/f06e0cd01eab954bd5f2190c9faa79bb5357e05b
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/fb503d077ff7b43913503eaf72995d1239028b99
    Patch