CVE-2022-49376
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2022-49376
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-49376.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2022-49376
- Downstream
- Related
- Published
- 2025-02-26T07:01:14Z
- Modified
- 2025-08-09T20:01:25Z
- Severity
-
- 5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- [none]
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
scsi: sd: Fix potential NULL pointer dereference
If sdprobe() sees an early error before sdkp->device is initialized, sdzbcreleasedisk() is called. This causes a NULL pointer dereference when sdiszoned() is called inside that function. Avoid this by removing the call to sdzbcreleasedisk() in sdprobe() error path.
This change is safe and does not result in zone information memory leakage because the zone information for a zoned disk is allocated only when sdrevalidatedisk() is called, at which point sdkp->diskdev is fully set, resulting in sddiskrelease() being called when needed to cleanup a disk zone information using sdzbcreleasedisk().
- References
-
- https://git.kernel.org/stable/c/05fbde3a77a4f1d62e4c4428f384288c1f1a0be5
- https://git.kernel.org/stable/c/0fcb0b131cc90c8f523a293d84c58d0c7273c96f
- https://git.kernel.org/stable/c/3733439593ad12f7b54ae35c273ea6f15d692de3
- https://git.kernel.org/stable/c/78f8e96df06e2d04d82d4071c299b59d28744f47
- https://git.kernel.org/stable/c/c1f0187025905e9981000d44a92e159468b561a8