In the Linux kernel, the following vulnerability has been resolved:
scsi: myrs: Fix crash in error case
In myrsdetect(), cs->disableintr is NULL when privdata->hwinit() fails with non-zero. In this case, myrscleanup(cs) will call a NULL ptr and crash the kernel.
[ 1.105606] myrs 0000:00:03.0: Unknown Initialization Error 5A [ 1.105872] myrs 0000:00:03.0: Failed to initialize Controller [ 1.106082] BUG: kernel NULL pointer dereference, address: 0000000000000000 [ 1.110774] Call Trace: [ 1.110950] myrscleanup+0xe4/0x150 [myrs] [ 1.111135] myrsprobe.cold+0x91/0x56a [myrs] [ 1.111302] ? DAC960GEMintrhandler+0x1f0/0x1f0 [myrs] [ 1.111500] localpci_probe+0x48/0x90
{ "vanir_signatures": [ { "deprecated": false, "id": "CVE-2022-48824-0850215b", "digest": { "function_hash": "263464750375924932069532804042465923923", "length": 412.0 }, "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@4db09593af0b0b4d7d4805ebb3273df51d7cc30d", "target": { "file": "drivers/scsi/myrs.c", "function": "myrs_cleanup" }, "signature_version": "v1", "signature_type": "Function" }, { "deprecated": false, "id": "CVE-2022-48824-1e7b731d", "digest": { "threshold": 0.9, "line_hashes": [ "151956859709341711556229537024914609517", "164319611821990885015601503103572753569", "261116648271369471750448824110192408619", "262879464585002700638956017190868485680" ] }, "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@1d6cd26605b4d662063a83c15c776b5299a1cb23", "target": { "file": "drivers/scsi/myrs.c" }, "signature_version": "v1", "signature_type": "Line" }, { "deprecated": false, "id": "CVE-2022-48824-2909e968", "digest": { "function_hash": "263464750375924932069532804042465923923", "length": 412.0 }, "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@5c5ceea00c8c9df150708e66cb9f2891192c1162", "target": { "file": "drivers/scsi/myrs.c", "function": "myrs_cleanup" }, "signature_version": "v1", "signature_type": "Function" }, { "deprecated": false, "id": "CVE-2022-48824-33bebde5", "digest": { "threshold": 0.9, "line_hashes": [ "151956859709341711556229537024914609517", "164319611821990885015601503103572753569", "261116648271369471750448824110192408619", "262879464585002700638956017190868485680" ] }, "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@0e42c4a3d732517edc3766dd45a14e60d29dd929", "target": { "file": "drivers/scsi/myrs.c" }, "signature_version": "v1", "signature_type": "Line" }, { "deprecated": false, "id": "CVE-2022-48824-5918db21", "digest": { "function_hash": "263464750375924932069532804042465923923", "length": 412.0 }, "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@6207f35c213f6cb2fc3f13b5e77f08c710e1de19", "target": { "file": "drivers/scsi/myrs.c", "function": "myrs_cleanup" }, "signature_version": "v1", "signature_type": "Function" }, { "deprecated": false, "id": "CVE-2022-48824-976eac41", "digest": { "threshold": 0.9, "line_hashes": [ "151956859709341711556229537024914609517", "164319611821990885015601503103572753569", "261116648271369471750448824110192408619", "262879464585002700638956017190868485680" ] }, "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@6207f35c213f6cb2fc3f13b5e77f08c710e1de19", "target": { "file": "drivers/scsi/myrs.c" }, "signature_version": "v1", "signature_type": "Line" }, { "deprecated": false, "id": "CVE-2022-48824-df6514ad", "digest": { "function_hash": "263464750375924932069532804042465923923", "length": 412.0 }, "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@0e42c4a3d732517edc3766dd45a14e60d29dd929", "target": { "file": "drivers/scsi/myrs.c", "function": "myrs_cleanup" }, "signature_version": "v1", "signature_type": "Function" }, { "deprecated": false, "id": "CVE-2022-48824-e500b088", "digest": { "function_hash": "263464750375924932069532804042465923923", "length": 412.0 }, "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@1d6cd26605b4d662063a83c15c776b5299a1cb23", "target": { "file": "drivers/scsi/myrs.c", "function": "myrs_cleanup" }, "signature_version": "v1", "signature_type": "Function" }, { "deprecated": false, "id": "CVE-2022-48824-ebe61fb3", "digest": { "threshold": 0.9, "line_hashes": [ "151956859709341711556229537024914609517", "164319611821990885015601503103572753569", "261116648271369471750448824110192408619", "262879464585002700638956017190868485680" ] }, "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@4db09593af0b0b4d7d4805ebb3273df51d7cc30d", "target": { "file": "drivers/scsi/myrs.c" }, "signature_version": "v1", "signature_type": "Line" }, { "deprecated": false, "id": "CVE-2022-48824-ee744030", "digest": { "threshold": 0.9, "line_hashes": [ "151956859709341711556229537024914609517", "164319611821990885015601503103572753569", "261116648271369471750448824110192408619", "262879464585002700638956017190868485680" ] }, "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@5c5ceea00c8c9df150708e66cb9f2891192c1162", "target": { "file": "drivers/scsi/myrs.c" }, "signature_version": "v1", "signature_type": "Line" } ] }