CVE-2022-48663

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2022-48663
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-48663.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2022-48663
Downstream
Related
Published
2024-04-28T13:01:36Z
Modified
2025-10-15T15:46:51.783974Z
Summary
gpio: mockup: fix NULL pointer dereference when removing debugfs
Details

In the Linux kernel, the following vulnerability has been resolved:

gpio: mockup: fix NULL pointer dereference when removing debugfs

We now remove the device's debugfs entries when unbinding the driver. This now causes a NULL-pointer dereference on module exit because the platform devices are unregistered after the global debugfs directory has been recursively removed. Fix it by unregistering the devices first.

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
3815e66c2183f3430490e450ba16779cf5214ec6
Fixed
bdea98b98f844bd8a983ca880893e509a8b4162f
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
3a10e8edee2b45a654f1f7b05f747129ec84cf9d
Fixed
18352095a0d581f6aeb1e9fc9d68cc0152cd64b4
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
bc55c1677edbe86a1c66a35e800df47dff16ad61
Fixed
af0bfabf06c74c260265c30ba81a34e7dec0e881
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
303e6da99429510b1e4edf833afe90ac8542e747
Fixed
b7df41a6f79dfb18ba2203f8c5f0e9c0b9b57f68

Affected versions

v5.*

v5.10.144
v5.10.145
v5.15.69
v5.15.70
v5.19.10
v5.19.11

v6.*

v6.0-rc2
v6.0-rc3
v6.0-rc4
v6.0-rc5
v6.0-rc6

Database specific

vanir_signatures

[
    {
        "id": "CVE-2022-48663-27b33d3a",
        "deprecated": false,
        "signature_version": "v1",
        "signature_type": "Function",
        "digest": {
            "function_hash": "115700283430038341064725186830068067749",
            "length": 121.0
        },
        "target": {
            "file": "drivers/gpio/gpio-mockup.c",
            "function": "gpio_mockup_exit"
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@bdea98b98f844bd8a983ca880893e509a8b4162f"
    },
    {
        "id": "CVE-2022-48663-7d73d1f0",
        "deprecated": false,
        "signature_version": "v1",
        "signature_type": "Line",
        "digest": {
            "line_hashes": [
                "185841187501949401997775899187506326351",
                "23935581778847790099988622745562284335",
                "44123819939015590193485569367608431769",
                "167896293561976827197421178375152390476",
                "190043442304333120768486625045328083462",
                "285310881840412328903987704826468322139",
                "6029197256011597778915650067840054996"
            ],
            "threshold": 0.9
        },
        "target": {
            "file": "drivers/gpio/gpio-mockup.c"
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@bdea98b98f844bd8a983ca880893e509a8b4162f"
    },
    {
        "id": "CVE-2022-48663-c5505d93",
        "deprecated": false,
        "signature_version": "v1",
        "signature_type": "Line",
        "digest": {
            "line_hashes": [
                "185841187501949401997775899187506326351",
                "23935581778847790099988622745562284335",
                "44123819939015590193485569367608431769",
                "167896293561976827197421178375152390476",
                "190043442304333120768486625045328083462",
                "285310881840412328903987704826468322139",
                "6029197256011597778915650067840054996"
            ],
            "threshold": 0.9
        },
        "target": {
            "file": "drivers/gpio/gpio-mockup.c"
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@18352095a0d581f6aeb1e9fc9d68cc0152cd64b4"
    },
    {
        "id": "CVE-2022-48663-d9e2ae52",
        "deprecated": false,
        "signature_version": "v1",
        "signature_type": "Function",
        "digest": {
            "function_hash": "115700283430038341064725186830068067749",
            "length": 121.0
        },
        "target": {
            "file": "drivers/gpio/gpio-mockup.c",
            "function": "gpio_mockup_exit"
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@18352095a0d581f6aeb1e9fc9d68cc0152cd64b4"
    }
]

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
5.10.144
Fixed
5.10.146
Type
ECOSYSTEM
Events
Introduced
5.15.69
Fixed
5.15.71
Type
ECOSYSTEM
Events
Introduced
5.19.10
Fixed
5.19.12