CVE-2022-49061

MEDIUM EPSS 14.9%
Published Feb 26, 20251y ago · Modified Jun 17, 20262w ago
5.5 CVSS 3.1
Medium
Find Similar
Published Feb 26, 2025 1y ago
Last Modified Jun 17, 2026 2w ago

Description

In the Linux kernel, the following vulnerability has been resolved: net: ethernet: stmmac: fix altr_tse_pcs function when using a fixed-link When using a fixed-link, the altr_tse_pcs driver crashes due to null-pointer dereference as no phy_device is provided to tse_pcs_fix_mac_speed function. Fix this by adding a check for phy_dev before calling the tse_pcs_fix_mac_speed() function. Also clean up the tse_pcs_fix_mac_speed function a bit. There is no need to check for splitter_base and sgmii_adapter_base because the driver will fail if these 2 variables are not derived from the device tree.

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
14.9% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-476 NULL Pointer Dereference Memory Safety

Affected Products 6

VendorProductVersionRange
linuxlinux_kernel*≥4.8  –  <5.4.190
linuxlinux_kernel*≥5.5  –  <5.10.112
linuxlinux_kernel*≥5.11  –  <5.15.35
linuxlinux_kernel*≥5.16  –  <5.17.4
linuxlinux_kernel5.18any
linuxlinux_kernel5.18any

References 5

  • git.kernel.org https://git.kernel.org/stable/c/08d5e3e954537931c8da7428034808d202e98299
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/62a48383ebe2e159fd68425dd3e16d4c6bd6599a
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/6c020f05253df04c3480b586fe188a3582740049
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/7e59fdf9547c4f948d1d917ec7ffa5fb5ac53bdb
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/a6aaa00324240967272b451bfa772547bd576ee6
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/08d5e3e954537931c8da7428034808d202e98299
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/62a48383ebe2e159fd68425dd3e16d4c6bd6599a
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/6c020f05253df04c3480b586fe188a3582740049
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/7e59fdf9547c4f948d1d917ec7ffa5fb5ac53bdb
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/a6aaa00324240967272b451bfa772547bd576ee6
    Patch