CVE-2022-49061

When using a fixed-link, the altrtsepcs driver crashes due to null-pointer dereference as no phydevice is provided to tsepcsfixmacspeed function. Fix this by adding a check for phydev before calling the tsepcsfixmacspeed() function.

Also clean up the tsepcsfixmacspeed function a bit. There is no need to check for splitterbase and sgmiiadapter_base because the driver will fail if these 2 variables are not derived from the device tree.

Database specific

{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/49xxx/CVE-2022-49061.json"
}

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

fb3bbdb859891e6bc27fd1afb3a07319f82c2ee4

Fixed

7e59fdf9547c4f948d1d917ec7ffa5fb5ac53bdb

Fixed

08d5e3e954537931c8da7428034808d202e98299

Fixed

62a48383ebe2e159fd68425dd3e16d4c6bd6599a

Fixed

6c020f05253df04c3480b586fe188a3582740049

Fixed

a6aaa00324240967272b451bfa772547bd576ee6

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-49061.json"

Linux / Kernel

Package

Name: Kernel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

4.8.0

Fixed

5.4.190

Type: ECOSYSTEM
Events: Introduced

5.5.0

Fixed

5.10.112

Type: ECOSYSTEM
Events: Introduced

5.11.0

Fixed

5.15.35

Type: ECOSYSTEM
Events: Introduced

5.16.0

Fixed

5.17.4

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-49061.json"