CVE-2022-49448
- Source
- https://cve.org/CVERecord?id=CVE-2022-49448
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-49448.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2022-49448
- Downstream
- Related
- Published
- 2025-02-26T02:12:59.203Z
- Modified
- 2026-03-11T04:56:42.741117Z
- Severity
-
- 5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- soc: bcm: Check for NULL return of devm_kzalloc()
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
soc: bcm: Check for NULL return of devm_kzalloc()
As the potential failure of allocation, devm_kzalloc() may return NULL. Then the 'pd->pmb' and the follow lines of code may bring null pointer dereference.
Therefore, it is better to check the return value of devm_kzalloc() to avoid this confusion.
- Database specific
{ "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/49xxx/CVE-2022-49448.json", "cna_assigner": "Linux" }- References
-
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- https://git.kernel.org/stable/c/36339ea7bae4943be01c8e9545e46e334591fecd
- https://git.kernel.org/stable/c/5650e103bfc70156001615861fb8aafb3947da6e
- https://git.kernel.org/stable/c/b48b98743b568bb219152ba2e15af6ef0d3d8a9b
- https://git.kernel.org/stable/c/b4bd2aafacce48db26b0a213d849818d940556dd
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/49xxx/CVE-2022-49448.json
- https://nvd.nist.gov/vuln/detail/CVE-2022-49448
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced8bcac4011ebe0dbdd46fd55b036ee855c95702d3Fixed5650e103bfc70156001615861fb8aafb3947da6eFixed36339ea7bae4943be01c8e9545e46e334591fecdFixedb48b98743b568bb219152ba2e15af6ef0d3d8a9bFixedb4bd2aafacce48db26b0a213d849818d940556dd
Affected versions
v5.*
v5.11
v5.11-rc2
v5.11-rc3
v5.11-rc4
v5.11-rc5
v5.11-rc6
v5.11-rc7
v5.12
v5.12-rc1
v5.12-rc1-dontuse
v5.12-rc2
v5.12-rc3
v5.12-rc4
v5.12-rc5
v5.12-rc6
v5.12-rc7
v5.12-rc8
v5.13
v5.13-rc1
v5.13-rc2
v5.13-rc3
v5.13-rc4
v5.13-rc5
v5.13-rc6
v5.13-rc7
v5.14
v5.14-rc1
v5.14-rc2
v5.14-rc3
v5.14-rc4
v5.14-rc5
v5.14-rc6
v5.14-rc7
v5.15
v5.15-rc1
v5.15-rc2
v5.15-rc3
v5.15-rc4
v5.15-rc5
v5.15-rc6
v5.15-rc7
v5.15.1
v5.15.10
v5.15.11
v5.15.12
v5.15.13
v5.15.14
v5.15.15
v5.15.16
v5.15.17
v5.15.18
v5.15.19
v5.15.2
v5.15.20
v5.15.21
v5.15.22
v5.15.23
v5.15.24
v5.15.25
v5.15.26
v5.15.27
v5.15.28
v5.15.29
v5.15.3
v5.15.30
v5.15.31
v5.15.32
v5.15.33
v5.15.34
v5.15.35
v5.15.36
v5.15.37
v5.15.38
v5.15.39
v5.15.4
v5.15.40
v5.15.41
v5.15.42
v5.15.43
v5.15.44
v5.15.45
v5.15.5
v5.15.6
v5.15.7
v5.15.8
v5.15.9
v5.16
v5.16-rc1
v5.16-rc2
v5.16-rc3
v5.16-rc4
v5.16-rc5
v5.16-rc6
v5.16-rc7
v5.16-rc8
v5.17
v5.17-rc1
v5.17-rc2
v5.17-rc3
v5.17-rc4
v5.17-rc5
v5.17-rc6
v5.17-rc7
v5.17-rc8
v5.17.1
v5.17.10
v5.17.11
v5.17.12
v5.17.13
v5.17.2
v5.17.3
v5.17.4
v5.17.5
v5.17.6
v5.17.7
v5.17.8
v5.17.9
v5.18
v5.18-rc1
v5.18-rc2
v5.18-rc3
v5.18-rc4
v5.18-rc5
v5.18-rc6
v5.18-rc7
v5.18.1
v5.18.2
Database specific
source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-49448.json"
vanir_signatures
[
{
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@5650e103bfc70156001615861fb8aafb3947da6e",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2022-49448-018d770f",
"digest": {
"length": 1472.0,
"function_hash": "181710452490843157441276397369457358061"
},
"signature_type": "Function",
"target": {
"file": "drivers/soc/bcm/bcm63xx/bcm-pmb.c",
"function": "bcm_pmb_probe"
}
},
{
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@b48b98743b568bb219152ba2e15af6ef0d3d8a9b",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2022-49448-44d979f0",
"digest": {
"length": 1399.0,
"function_hash": "315822537228627185180874829731595992368"
},
"signature_type": "Function",
"target": {
"file": "drivers/soc/bcm/bcm63xx/bcm-pmb.c",
"function": "bcm_pmb_probe"
}
},
{
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@5650e103bfc70156001615861fb8aafb3947da6e",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2022-49448-5e751c4e",
"digest": {
"threshold": 0.9,
"line_hashes": [
"262097555959005181058079913574850597000",
"27185054072158377429869931601101635927",
"107714781890762749779889001978625453330"
]
},
"signature_type": "Line",
"target": {
"file": "drivers/soc/bcm/bcm63xx/bcm-pmb.c"
}
},
{
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@36339ea7bae4943be01c8e9545e46e334591fecd",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2022-49448-a2462269",
"digest": {
"length": 1399.0,
"function_hash": "315822537228627185180874829731595992368"
},
"signature_type": "Function",
"target": {
"file": "drivers/soc/bcm/bcm63xx/bcm-pmb.c",
"function": "bcm_pmb_probe"
}
},
{
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@36339ea7bae4943be01c8e9545e46e334591fecd",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2022-49448-ae99e039",
"digest": {
"threshold": 0.9,
"line_hashes": [
"262097555959005181058079913574850597000",
"27185054072158377429869931601101635927",
"107714781890762749779889001978625453330"
]
},
"signature_type": "Line",
"target": {
"file": "drivers/soc/bcm/bcm63xx/bcm-pmb.c"
}
},
{
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@b48b98743b568bb219152ba2e15af6ef0d3d8a9b",
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2022-49448-c1ad21b9",
"digest": {
"threshold": 0.9,
"line_hashes": [
"262097555959005181058079913574850597000",
"27185054072158377429869931601101635927",
"107714781890762749779889001978625453330"
]
},
"signature_type": "Line",
"target": {
"file": "drivers/soc/bcm/bcm63xx/bcm-pmb.c"
}
}
]