CVE-2022-50370
- Source
- https://cve.org/CVERecord?id=CVE-2022-50370
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-50370.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2022-50370
- Downstream
- Related
- Published
- 2025-09-17T14:56:26.015Z
- Modified
- 2026-03-11T11:19:16.450292Z
- Severity
-
- 5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- i2c: designware: Fix handling of real but unexpected device interrupts
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
i2c: designware: Fix handling of real but unexpected device interrupts
Commit c7b79a752871 ("mfd: intel-lpss: Add Intel Alder Lake PCH-S PCI IDs") caused a regression on certain Gigabyte motherboards for Intel Alder Lake-S where system crashes to NULL pointer dereference in i2cdwxfer_msg() when system resumes from S3 sleep state ("deep").
I was able to debug the issue on Gigabyte Z690 AORUS ELITE and made following notes:
- Issue happens when resuming from S3 but not when resuming from "s2idle"
- PCI device 00:15.0 == i2cdesignware.0 is already in D0 state when system enters into pcipmresumenoirq() while all other i2c_designware PCI devices are in D3. Devices were runtime suspended and in D3 prior entering into suspend
- Interrupt comes after pcipmresume_noirq() when device interrupts are re-enabled
- According to register dump the interrupt really comes from the i2cdesignware.0. Controller is enabled, I2C target address register points to a one detectable I2C device address 0x60 and the DWICRAWINTRSTAT register STARTDET, STOPDET, ACTIVITY and TXEMPTY bits are set indicating completed I2C transaction.
My guess is that the firmware uses this controller to communicate with an on-board I2C device during resume but does not disable the controller before giving control to an operating system.
I was told the UEFI update fixes this but never the less it revealed the driver is not ready to handle TXEMPTY (or RXFULL) interrupt when device is supposed to be idle and state variables are not set (especially the dev->msgs pointer which may point to NULL or stale old data).
Introduce a new software status flag STATUS_ACTIVE indicating when the controller is active in driver point of view. Now treat all interrupts that occur when is not set as unexpected and mask all interrupts from the controller.
- Database specific
{ "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/50xxx/CVE-2022-50370.json", "cna_assigner": "Linux" }- References
-
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- https://git.kernel.org/stable/c/301c8f5c32c8fb79c67539bc23972dc3ef48024c
- https://git.kernel.org/stable/c/7fa5304c4b5b425d4a0b3acf10139a7f6108a85f
- https://git.kernel.org/stable/c/a206f7fbe9589c60fafad12884628c909ecb042f
- https://git.kernel.org/stable/c/aa59ac81e859006d3a1df035a19b3f2089110f93
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/50xxx/CVE-2022-50370.json
- https://nvd.nist.gov/vuln/detail/CVE-2022-50370
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedc7b79a75287141cef5bbaeaf1c942269c08cd52eFixed7fa5304c4b5b425d4a0b3acf10139a7f6108a85fFixeda206f7fbe9589c60fafad12884628c909ecb042fFixedaa59ac81e859006d3a1df035a19b3f2089110f93Fixed301c8f5c32c8fb79c67539bc23972dc3ef48024c
Affected versions
v5.*
v5.11
v5.11-rc2
v5.11-rc3
v5.11-rc4
v5.11-rc5
v5.11-rc6
v5.11-rc7
v5.12
v5.12-rc1
v5.12-rc1-dontuse
v5.12-rc2
v5.12-rc3
v5.12-rc4
v5.12-rc5
v5.12-rc6
v5.12-rc7
v5.12-rc8
v5.13
v5.13-rc1
v5.13-rc2
v5.13-rc3
v5.13-rc4
v5.13-rc5
v5.13-rc6
v5.13-rc7
v5.14
v5.14-rc1
v5.14-rc2
v5.14-rc3
v5.14-rc4
v5.14-rc5
v5.14-rc6
v5.14-rc7
v5.15
v5.15-rc1
v5.15-rc2
v5.15-rc3
v5.15-rc4
v5.15-rc5
v5.15-rc6
v5.15-rc7
v5.15.1
v5.15.10
v5.15.11
v5.15.12
v5.15.13
v5.15.14
v5.15.15
v5.15.16
v5.15.17
v5.15.18
v5.15.19
v5.15.2
v5.15.20
v5.15.21
v5.15.22
v5.15.23
v5.15.24
v5.15.25
v5.15.26
v5.15.27
v5.15.28
v5.15.29
v5.15.3
v5.15.30
v5.15.31
v5.15.32
v5.15.33
v5.15.34
v5.15.35
v5.15.36
v5.15.37
v5.15.38
v5.15.39
v5.15.4
v5.15.40
v5.15.41
v5.15.42
v5.15.43
v5.15.44
v5.15.45
v5.15.46
v5.15.47
v5.15.48
v5.15.49
v5.15.5
v5.15.50
v5.15.51
v5.15.52
v5.15.53
v5.15.54
v5.15.55
v5.15.56
v5.15.57
v5.15.58
v5.15.59
v5.15.6
v5.15.60
v5.15.61
v5.15.62
v5.15.63
v5.15.64
v5.15.65
v5.15.66
v5.15.67
v5.15.68
v5.15.69
v5.15.7
v5.15.70
v5.15.71
v5.15.72
v5.15.73
v5.15.74
v5.15.8
v5.15.9
v5.16
v5.16-rc1
v5.16-rc2
v5.16-rc3
v5.16-rc4
v5.16-rc5
v5.16-rc6
v5.16-rc7
v5.16-rc8
v5.17
v5.17-rc1
v5.17-rc2
v5.17-rc3
v5.17-rc4
v5.17-rc5
v5.17-rc6
v5.17-rc7
v5.17-rc8
v5.18
v5.18-rc1
v5.18-rc2
v5.18-rc3
v5.18-rc4
v5.18-rc5
v5.18-rc6
v5.18-rc7
v5.19
v5.19-rc1
v5.19-rc2
v5.19-rc3
v5.19-rc4
v5.19-rc5
v5.19-rc6
v5.19-rc7
v5.19-rc8
v5.19.1
v5.19.10
v5.19.11
v5.19.12
v5.19.13
v5.19.14
v5.19.15
v5.19.16
v5.19.2
v5.19.3
v5.19.4
v5.19.5
v5.19.6
v5.19.7
v5.19.8
v5.19.9
v6.*
v6.0
v6.0-rc1
v6.0-rc2
v6.0-rc3
v6.0-rc4
v6.0-rc5
v6.0-rc6
v6.0-rc7
v6.0.1
v6.0.2
Database specific
vanir_signatures
[
{
"signature_type": "Line",
"signature_version": "v1",
"target": {
"file": "drivers/i2c/busses/i2c-designware-core.h"
},
"id": "CVE-2022-50370-21448b13",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@7fa5304c4b5b425d4a0b3acf10139a7f6108a85f",
"digest": {
"line_hashes": [
"142847431108705915590159071369770238748",
"63033183490355944214929398668903768965",
"237611435902271580334096736946133184914",
"255975239519183176498949935993618274182",
"132680302747988667617656587863530015515",
"251860568191781078694076200729911623568",
"17747559721587011100238673499089256892",
"162832797121859164054321122793845685549",
"247343595220200753645218768177280028049",
"161712397806407883092341024353716714222",
"312370865088923960902901928133914474368",
"29557323638030692103974673814227267359"
],
"threshold": 0.9
}
},
{
"signature_type": "Function",
"signature_version": "v1",
"target": {
"file": "drivers/i2c/busses/i2c-designware-core.h",
"function": "__i2c_dw_enable"
},
"id": "CVE-2022-50370-2d678a4a",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@7fa5304c4b5b425d4a0b3acf10139a7f6108a85f",
"digest": {
"function_hash": "150053225895683387961674703193406935802",
"length": 97.0
}
},
{
"signature_type": "Function",
"signature_version": "v1",
"target": {
"file": "drivers/i2c/busses/i2c-designware-core.h",
"function": "__i2c_dw_enable"
},
"id": "CVE-2022-50370-35f66173",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@aa59ac81e859006d3a1df035a19b3f2089110f93",
"digest": {
"function_hash": "150053225895683387961674703193406935802",
"length": 97.0
}
},
{
"signature_type": "Line",
"signature_version": "v1",
"target": {
"file": "drivers/i2c/busses/i2c-designware-master.c"
},
"id": "CVE-2022-50370-3df9c799",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@a206f7fbe9589c60fafad12884628c909ecb042f",
"digest": {
"line_hashes": [
"229510964343592007845683348061306108127",
"300844158555672178718626525706229008312",
"323757151780197774399912890452877211359",
"121449987644772762248214704280710850252"
],
"threshold": 0.9
}
},
{
"signature_type": "Function",
"signature_version": "v1",
"target": {
"file": "drivers/i2c/busses/i2c-designware-master.c",
"function": "i2c_dw_irq_handler_master"
},
"id": "CVE-2022-50370-4e5df274",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@301c8f5c32c8fb79c67539bc23972dc3ef48024c",
"digest": {
"function_hash": "16721769605573504084212591526879435408",
"length": 770.0
}
},
{
"signature_type": "Function",
"signature_version": "v1",
"target": {
"file": "drivers/i2c/busses/i2c-designware-core.h",
"function": "__i2c_dw_disable_nowait"
},
"id": "CVE-2022-50370-5634a154",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@a206f7fbe9589c60fafad12884628c909ecb042f",
"digest": {
"function_hash": "187217874741744647038742551661232920696",
"length": 97.0
}
},
{
"signature_type": "Line",
"signature_version": "v1",
"target": {
"file": "drivers/i2c/busses/i2c-designware-core.h"
},
"id": "CVE-2022-50370-5b774347",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@aa59ac81e859006d3a1df035a19b3f2089110f93",
"digest": {
"line_hashes": [
"142847431108705915590159071369770238748",
"63033183490355944214929398668903768965",
"237611435902271580334096736946133184914",
"255975239519183176498949935993618274182",
"132680302747988667617656587863530015515",
"251860568191781078694076200729911623568",
"17747559721587011100238673499089256892",
"162832797121859164054321122793845685549",
"247343595220200753645218768177280028049",
"161712397806407883092341024353716714222",
"312370865088923960902901928133914474368",
"29557323638030692103974673814227267359"
],
"threshold": 0.9
}
},
{
"signature_type": "Line",
"signature_version": "v1",
"target": {
"file": "drivers/i2c/busses/i2c-designware-master.c"
},
"id": "CVE-2022-50370-5e95d5e7",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@aa59ac81e859006d3a1df035a19b3f2089110f93",
"digest": {
"line_hashes": [
"229510964343592007845683348061306108127",
"300844158555672178718626525706229008312",
"323757151780197774399912890452877211359",
"121449987644772762248214704280710850252"
],
"threshold": 0.9
}
},
{
"signature_type": "Function",
"signature_version": "v1",
"target": {
"file": "drivers/i2c/busses/i2c-designware-master.c",
"function": "i2c_dw_irq_handler_master"
},
"id": "CVE-2022-50370-79d86a79",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@7fa5304c4b5b425d4a0b3acf10139a7f6108a85f",
"digest": {
"function_hash": "329806229712681622801402150185670072445",
"length": 700.0
}
},
{
"signature_type": "Function",
"signature_version": "v1",
"target": {
"file": "drivers/i2c/busses/i2c-designware-core.h",
"function": "__i2c_dw_disable_nowait"
},
"id": "CVE-2022-50370-8104448b",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@301c8f5c32c8fb79c67539bc23972dc3ef48024c",
"digest": {
"function_hash": "187217874741744647038742551661232920696",
"length": 97.0
}
},
{
"signature_type": "Function",
"signature_version": "v1",
"target": {
"file": "drivers/i2c/busses/i2c-designware-master.c",
"function": "i2c_dw_irq_handler_master"
},
"id": "CVE-2022-50370-8ed60d05",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@a206f7fbe9589c60fafad12884628c909ecb042f",
"digest": {
"function_hash": "16721769605573504084212591526879435408",
"length": 770.0
}
},
{
"signature_type": "Line",
"signature_version": "v1",
"target": {
"file": "drivers/i2c/busses/i2c-designware-master.c"
},
"id": "CVE-2022-50370-bdcf2a9b",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@301c8f5c32c8fb79c67539bc23972dc3ef48024c",
"digest": {
"line_hashes": [
"229510964343592007845683348061306108127",
"300844158555672178718626525706229008312",
"323757151780197774399912890452877211359",
"121449987644772762248214704280710850252"
],
"threshold": 0.9
}
},
{
"signature_type": "Function",
"signature_version": "v1",
"target": {
"file": "drivers/i2c/busses/i2c-designware-core.h",
"function": "__i2c_dw_disable_nowait"
},
"id": "CVE-2022-50370-c37d6bbe",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@aa59ac81e859006d3a1df035a19b3f2089110f93",
"digest": {
"function_hash": "187217874741744647038742551661232920696",
"length": 97.0
}
},
{
"signature_type": "Function",
"signature_version": "v1",
"target": {
"file": "drivers/i2c/busses/i2c-designware-core.h",
"function": "__i2c_dw_enable"
},
"id": "CVE-2022-50370-cd314ee5",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@a206f7fbe9589c60fafad12884628c909ecb042f",
"digest": {
"function_hash": "150053225895683387961674703193406935802",
"length": 97.0
}
},
{
"signature_type": "Function",
"signature_version": "v1",
"target": {
"file": "drivers/i2c/busses/i2c-designware-core.h",
"function": "__i2c_dw_enable"
},
"id": "CVE-2022-50370-db49066a",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@301c8f5c32c8fb79c67539bc23972dc3ef48024c",
"digest": {
"function_hash": "150053225895683387961674703193406935802",
"length": 97.0
}
},
{
"signature_type": "Line",
"signature_version": "v1",
"target": {
"file": "drivers/i2c/busses/i2c-designware-core.h"
},
"id": "CVE-2022-50370-e8bb795e",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@301c8f5c32c8fb79c67539bc23972dc3ef48024c",
"digest": {
"line_hashes": [
"142847431108705915590159071369770238748",
"63033183490355944214929398668903768965",
"237611435902271580334096736946133184914",
"255975239519183176498949935993618274182",
"132680302747988667617656587863530015515",
"251860568191781078694076200729911623568",
"17747559721587011100238673499089256892",
"162832797121859164054321122793845685549",
"247343595220200753645218768177280028049",
"161712397806407883092341024353716714222",
"312370865088923960902901928133914474368",
"29557323638030692103974673814227267359"
],
"threshold": 0.9
}
},
{
"signature_type": "Function",
"signature_version": "v1",
"target": {
"file": "drivers/i2c/busses/i2c-designware-master.c",
"function": "i2c_dw_irq_handler_master"
},
"id": "CVE-2022-50370-e95880c0",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@aa59ac81e859006d3a1df035a19b3f2089110f93",
"digest": {
"function_hash": "16721769605573504084212591526879435408",
"length": 770.0
}
},
{
"signature_type": "Line",
"signature_version": "v1",
"target": {
"file": "drivers/i2c/busses/i2c-designware-master.c"
},
"id": "CVE-2022-50370-f446d967",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@7fa5304c4b5b425d4a0b3acf10139a7f6108a85f",
"digest": {
"line_hashes": [
"229510964343592007845683348061306108127",
"300844158555672178718626525706229008312",
"323757151780197774399912890452877211359",
"121449987644772762248214704280710850252"
],
"threshold": 0.9
}
},
{
"signature_type": "Line",
"signature_version": "v1",
"target": {
"file": "drivers/i2c/busses/i2c-designware-core.h"
},
"id": "CVE-2022-50370-f6b2857e",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@a206f7fbe9589c60fafad12884628c909ecb042f",
"digest": {
"line_hashes": [
"142847431108705915590159071369770238748",
"63033183490355944214929398668903768965",
"237611435902271580334096736946133184914",
"255975239519183176498949935993618274182",
"132680302747988667617656587863530015515",
"251860568191781078694076200729911623568",
"17747559721587011100238673499089256892",
"162832797121859164054321122793845685549",
"247343595220200753645218768177280028049",
"161712397806407883092341024353716714222",
"312370865088923960902901928133914474368",
"29557323638030692103974673814227267359"
],
"threshold": 0.9
}
},
{
"signature_type": "Function",
"signature_version": "v1",
"target": {
"file": "drivers/i2c/busses/i2c-designware-core.h",
"function": "__i2c_dw_disable_nowait"
},
"id": "CVE-2022-50370-f6ff7e48",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@7fa5304c4b5b425d4a0b3acf10139a7f6108a85f",
"digest": {
"function_hash": "187217874741744647038742551661232920696",
"length": 97.0
}
}
]
source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-50370.json"