CVE-2022-49962
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2022-49962
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-49962.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2022-49962
- Downstream
- Related
- Published
- 2025-06-18T11:00:23Z
- Modified
- 2025-10-21T11:26:18.299551Z
- Summary
- xhci: Fix null pointer dereference in remove if xHC has only one roothub
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
xhci: Fix null pointer dereference in remove if xHC has only one roothub
The remove path in xhci platform driver tries to remove and put both main and shared hcds even if only a main hcd exists (one roothub)
This causes a null pointer dereference in reboot for those controllers.
Check that the shared_hcd exists before trying to remove it.
- References
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducede0fe986972f5b6b12086c73569206dd29c520be9Fixed7081b2f34ff291ada012bd6abacaf7d51c4cf73f
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducede0fe986972f5b6b12086c73569206dd29c520be9Fixed4a593a62a9e3a25ab4bc37f612e4edec144f7f43
Affected versions
v5.*
v5.18
v5.18-rc6
v5.18-rc7
v5.19
v5.19-rc1
v5.19-rc2
v5.19-rc3
v5.19-rc4
v5.19-rc5
v5.19-rc6
v5.19-rc7
v5.19-rc8
v5.19.1
v5.19.2
v5.19.3
v5.19.4
v5.19.5
v5.19.6
v5.19.7
v6.*
v6.0-rc1
Database specific
vanir_signatures
[
{
"deprecated": false,
"signature_version": "v1",
"digest": {
"line_hashes": [
"290558426051905593318169400033829212189",
"105008679322127055046498595066638202790",
"9678898299884184258211076740793636894",
"3699518031772736886920388286445375479",
"338190125619826176752114138297889541677",
"192333923462979326891593489922277918156",
"179995139890146286896092727425501988407",
"26747565518096229324757320019425085465"
],
"threshold": 0.9
},
"target": {
"file": "drivers/usb/host/xhci-plat.c"
},
"id": "CVE-2022-49962-3e1c4a1f",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@4a593a62a9e3a25ab4bc37f612e4edec144f7f43",
"signature_type": "Line"
},
{
"deprecated": false,
"signature_version": "v1",
"digest": {
"function_hash": "89891067516400987014881585237450678715",
"length": 537.0
},
"target": {
"function": "xhci_plat_remove",
"file": "drivers/usb/host/xhci-plat.c"
},
"id": "CVE-2022-49962-8f0154ba",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@7081b2f34ff291ada012bd6abacaf7d51c4cf73f",
"signature_type": "Function"
},
{
"deprecated": false,
"signature_version": "v1",
"digest": {
"function_hash": "89891067516400987014881585237450678715",
"length": 537.0
},
"target": {
"function": "xhci_plat_remove",
"file": "drivers/usb/host/xhci-plat.c"
},
"id": "CVE-2022-49962-a3b387a6",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@4a593a62a9e3a25ab4bc37f612e4edec144f7f43",
"signature_type": "Function"
},
{
"deprecated": false,
"signature_version": "v1",
"digest": {
"line_hashes": [
"290558426051905593318169400033829212189",
"105008679322127055046498595066638202790",
"9678898299884184258211076740793636894",
"3699518031772736886920388286445375479",
"338190125619826176752114138297889541677",
"192333923462979326891593489922277918156",
"179995139890146286896092727425501988407",
"26747565518096229324757320019425085465"
],
"threshold": 0.9
},
"target": {
"file": "drivers/usb/host/xhci-plat.c"
},
"id": "CVE-2022-49962-b269065e",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@7081b2f34ff291ada012bd6abacaf7d51c4cf73f",
"signature_type": "Line"
}
]