CVE-2022-49472

MEDIUM EPSS 18.5%
Published Feb 26, 20251y ago · Modified Jun 17, 20262w ago
5.5 CVSS 3.1
Medium
Find Similar
Published Feb 26, 2025 1y ago
Last Modified Jun 17, 2026 2w ago

Description

In the Linux kernel, the following vulnerability has been resolved: net: phy: micrel: Allow probing without .driver_data Currently, if the .probe element is present in the phy_driver structure and the .driver_data is not, a NULL pointer dereference happens. Allow passing .probe without .driver_data by inserting NULL checks for priv->type.

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
18.5% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-476 NULL Pointer Dereference Memory Safety

Affected Products 7

VendorProductVersionRange
linuxlinux_kernel* <4.14.283
linuxlinux_kernel*≥4.15  –  <4.19.247
linuxlinux_kernel*≥4.20  –  <5.4.198
linuxlinux_kernel*≥5.5  –  <5.10.121
linuxlinux_kernel*≥5.11  –  <5.15.46
linuxlinux_kernel*≥5.16  –  <5.17.14
linuxlinux_kernel*≥5.18  –  <5.18.3

References 8

  • git.kernel.org https://git.kernel.org/stable/c/143878e18001c5a61fcc7ae5c5240323753bb641
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/1e5fbfc2a6f384e3195446c14bbd3bc298eb88c2
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/660dfa033ccc9afb032015b6dc76e846bba42cfb
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/7dcb404662839a4ed1a9703658fee979eb894ca4
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/91e720b32cba25fa58eaa4c88fe957009cffe9f3
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/abb5594ae2ba7b82cce85917cc6337ec5d774837
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/bd219273b4e004a3f853da72e111fc8f81357501
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/f2ef6f7539c68c6bd6c32323d8845ee102b7c450
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/143878e18001c5a61fcc7ae5c5240323753bb641
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/1e5fbfc2a6f384e3195446c14bbd3bc298eb88c2
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/660dfa033ccc9afb032015b6dc76e846bba42cfb
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/7dcb404662839a4ed1a9703658fee979eb894ca4
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/91e720b32cba25fa58eaa4c88fe957009cffe9f3
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/abb5594ae2ba7b82cce85917cc6337ec5d774837
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/bd219273b4e004a3f853da72e111fc8f81357501
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/f2ef6f7539c68c6bd6c32323d8845ee102b7c450
    Patch