CVE-2022-48648

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2022-48648
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-48648.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2022-48648
Downstream
Related
Published
2024-04-28T13:00:28.994Z
Modified
2026-03-14T12:00:39.823187Z
Summary
sfc: fix null pointer dereference in efx_hard_start_xmit
Details

In the Linux kernel, the following vulnerability has been resolved:

sfc: fix null pointer dereference in efxhardstart_xmit

Trying to get the channel from the txqueue variable here is wrong because we can only be here if txqueue is NULL, so we shouldn't dereference it. As the above comment in the code says, this is very unlikely to happen, but it's wrong anyway so let's fix it.

I hit this issue because of a different bug that caused txqueue to be NULL. If that happens, this is the error message that we get here: BUG: unable to handle kernel NULL pointer dereference at 0000000000000020 [...] RIP: 0010:efxhardstartxmit+0x153/0x170 [sfc]

Database specific 
{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/48xxx/CVE-2022-48648.json"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
12804793b17c0e19115a90d98f2f3df0cb79e233
Fixed
b3b41d4d95d3822b2e459ecbc80d030ea6aec5e7
Fixed
8547c7bfc0617e7184e4da65b9b96681fcfe9998
Fixed
b3b952168ee1f220ba729fa100fd9d5aa752eb03
Fixed
0a242eb2913a4aa3d6fbdb86559f27628e9466f3

Database specific

source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-48648.json"