CVE-2022-49868

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2022-49868
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-49868.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2022-49868
Downstream
Related
Published
2025-05-01T14:10:19Z
Modified
2025-10-21T11:27:14.381031Z
Summary
phy: ralink: mt7621-pci: add sentinel to quirks table
Details

In the Linux kernel, the following vulnerability has been resolved:

phy: ralink: mt7621-pci: add sentinel to quirks table

With mt7621 socdevattr fixed to register the soc as a device, kernel will experience an oops in socdevicematch_attr

This quirk test was introduced in the staging driver in commit 9445ccb3714c ("staging: mt7621-pci-phy: add quirks for 'E2' revision using 'socdeviceattribute'"). The staging driver was removed, and later re-added in commit d87da32372a0 ("phy: ralink: Add PHY driver for MT7621 PCIe PHY") for kernel 5.11

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
d87da32372a03ce121fc65ccd2c9a43edf56b364
Fixed
500bcd3a99eae84412067c3b9e7ffba1c66e6383
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
d87da32372a03ce121fc65ccd2c9a43edf56b364
Fixed
d539cfd1202d66c2dcea383f1d96835ae72d5809
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
d87da32372a03ce121fc65ccd2c9a43edf56b364
Fixed
819b885cd886c193782891c4f51bbcab3de119a4

Affected versions

v5.*

v5.10
v5.10-rc2
v5.10-rc3
v5.10-rc4
v5.10-rc5
v5.10-rc6
v5.10-rc7
v5.11
v5.11-rc1
v5.11-rc2
v5.11-rc3
v5.11-rc4
v5.11-rc5
v5.11-rc6
v5.11-rc7
v5.12
v5.12-rc1
v5.12-rc1-dontuse
v5.12-rc2
v5.12-rc3
v5.12-rc4
v5.12-rc5
v5.12-rc6
v5.12-rc7
v5.12-rc8
v5.13
v5.13-rc1
v5.13-rc2
v5.13-rc3
v5.13-rc4
v5.13-rc5
v5.13-rc6
v5.13-rc7
v5.14
v5.14-rc1
v5.14-rc2
v5.14-rc3
v5.14-rc4
v5.14-rc5
v5.14-rc6
v5.14-rc7
v5.15
v5.15-rc1
v5.15-rc2
v5.15-rc3
v5.15-rc4
v5.15-rc5
v5.15-rc6
v5.15-rc7
v5.15.1
v5.15.10
v5.15.11
v5.15.12
v5.15.13
v5.15.14
v5.15.15
v5.15.16
v5.15.17
v5.15.18
v5.15.19
v5.15.2
v5.15.20
v5.15.21
v5.15.22
v5.15.23
v5.15.24
v5.15.25
v5.15.26
v5.15.27
v5.15.28
v5.15.29
v5.15.3
v5.15.30
v5.15.31
v5.15.32
v5.15.33
v5.15.34
v5.15.35
v5.15.36
v5.15.37
v5.15.38
v5.15.39
v5.15.4
v5.15.40
v5.15.41
v5.15.42
v5.15.43
v5.15.44
v5.15.45
v5.15.46
v5.15.47
v5.15.48
v5.15.49
v5.15.5
v5.15.50
v5.15.51
v5.15.52
v5.15.53
v5.15.54
v5.15.55
v5.15.56
v5.15.57
v5.15.58
v5.15.59
v5.15.6
v5.15.60
v5.15.61
v5.15.62
v5.15.63
v5.15.64
v5.15.65
v5.15.66
v5.15.67
v5.15.68
v5.15.69
v5.15.7
v5.15.70
v5.15.71
v5.15.72
v5.15.73
v5.15.74
v5.15.75
v5.15.76
v5.15.77
v5.15.78
v5.15.8
v5.15.9
v5.16
v5.16-rc1
v5.16-rc2
v5.16-rc3
v5.16-rc4
v5.16-rc5
v5.16-rc6
v5.16-rc7
v5.16-rc8
v5.17
v5.17-rc1
v5.17-rc2
v5.17-rc3
v5.17-rc4
v5.17-rc5
v5.17-rc6
v5.17-rc7
v5.17-rc8
v5.18
v5.18-rc1
v5.18-rc2
v5.18-rc3
v5.18-rc4
v5.18-rc5
v5.18-rc6
v5.18-rc7
v5.19
v5.19-rc1
v5.19-rc2
v5.19-rc3
v5.19-rc4
v5.19-rc5
v5.19-rc6
v5.19-rc7
v5.19-rc8

v6.*

v6.0
v6.0-rc1
v6.0-rc2
v6.0-rc3
v6.0-rc4
v6.0-rc5
v6.0-rc6
v6.0-rc7
v6.0.1
v6.0.2
v6.0.3
v6.0.4
v6.0.5
v6.0.6
v6.0.7
v6.0.8
v6.1-rc1

Database specific

vanir_signatures

[
    {
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@819b885cd886c193782891c4f51bbcab3de119a4",
        "id": "CVE-2022-49868-156128e8",
        "deprecated": false,
        "signature_version": "v1",
        "target": {
            "file": "drivers/phy/ralink/phy-mt7621-pci.c"
        },
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "328249307274254224942170646488372912887",
                "145205066009386579135963525232325655908",
                "14650689036933064605204691218006821871",
                "261160946050215646331449500543550895237"
            ]
        },
        "signature_type": "Line"
    },
    {
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@500bcd3a99eae84412067c3b9e7ffba1c66e6383",
        "id": "CVE-2022-49868-85881607",
        "deprecated": false,
        "signature_version": "v1",
        "target": {
            "file": "drivers/phy/ralink/phy-mt7621-pci.c"
        },
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "328249307274254224942170646488372912887",
                "145205066009386579135963525232325655908",
                "14650689036933064605204691218006821871",
                "261160946050215646331449500543550895237"
            ]
        },
        "signature_type": "Line"
    },
    {
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@d539cfd1202d66c2dcea383f1d96835ae72d5809",
        "id": "CVE-2022-49868-fa31d8d5",
        "deprecated": false,
        "signature_version": "v1",
        "target": {
            "file": "drivers/phy/ralink/phy-mt7621-pci.c"
        },
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "328249307274254224942170646488372912887",
                "145205066009386579135963525232325655908",
                "14650689036933064605204691218006821871",
                "261160946050215646331449500543550895237"
            ]
        },
        "signature_type": "Line"
    }
]

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
5.11.0
Fixed
5.15.79
Type
ECOSYSTEM
Events
Introduced
5.16.0
Fixed
6.0.9