CVE-2022-49490
- Source
- https://cve.org/CVERecord?id=CVE-2022-49490
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-49490.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2022-49490
- Downstream
- Related
- Published
- 2025-02-26T02:13:27.529Z
- Modified
- 2026-04-11T12:44:08.116710Z
- Summary
- drm/msm/mdp5: Return error code in mdp5_pipe_release when deadlock is detected
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
drm/msm/mdp5: Return error code in mdp5piperelease when deadlock is detected
mdp5getglobalstate runs the risk of hitting a -EDEADLK when acquiring the modeset lock, but currently mdp5piperelease doesn't check for if an error is returned. Because of this, there is a possibility of mdp5pipe_release hitting a NULL dereference error.
To avoid this, let's have mdp5piperelease check if mdp5getglobal_state returns an error and propogate that error.
Changes since v1: - Separated declaration and initialization of *new_state to avoid compiler warning - Fixed some spelling mistakes in commit message
Changes since v2: - Return 0 in case where hwpipe is NULL as this is considered normal behavior - Added 2nd patch in series to fix a similar NULL dereference issue in mdp5mixerrelease
Patchwork: https://patchwork.freedesktop.org/patch/485179/
- Database specific
{ "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/49xxx/CVE-2022-49490.json", "cna_assigner": "Linux" }- References
-
- https://git.kernel.org/stable/c/04bef5f1ba8ea6d7c1c8f5f65e0395c62db59cb8
- https://git.kernel.org/stable/c/19964dfb39bda4d7716a71009488f0668ecbcf52
- https://git.kernel.org/stable/c/33dc5aac46e0fad8f5eb193e5906ed0eb6b66ceb
- https://git.kernel.org/stable/c/49dc28b4b2e28ef7564e355c91487996c1cbebd7
- https://git.kernel.org/stable/c/776f5c58bfe16cf322d71eeed3c5dda1eeac7e6b
- https://git.kernel.org/stable/c/b2aa2c4efe93e2580d6a8774b04fe2b99756a322
- https://git.kernel.org/stable/c/d59be579fa932c46b908f37509f319cbd4ca9a68
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/49xxx/CVE-2022-49490.json
- https://nvd.nist.gov/vuln/detail/CVE-2022-49490
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced7907a0d77cb461f58045763c205a5830be72e97cFixed776f5c58bfe16cf322d71eeed3c5dda1eeac7e6bFixedb2aa2c4efe93e2580d6a8774b04fe2b99756a322Fixed49dc28b4b2e28ef7564e355c91487996c1cbebd7Fixed04bef5f1ba8ea6d7c1c8f5f65e0395c62db59cb8Fixed19964dfb39bda4d7716a71009488f0668ecbcf52Fixed33dc5aac46e0fad8f5eb193e5906ed0eb6b66cebFixedd59be579fa932c46b908f37509f319cbd4ca9a68
Linux / Kernel
Package
- Name
- Kernel
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced4.18.0Fixed4.19.247
- Type
- ECOSYSTEM
- Events
-
Introduced4.20.0Fixed5.4.198
- Type
- ECOSYSTEM
- Events
-
Introduced5.5.0Fixed5.10.121
- Type
- ECOSYSTEM
- Events
-
Introduced5.11.0Fixed5.15.46
- Type
- ECOSYSTEM
- Events
-
Introduced5.16.0Fixed5.17.14
- Type
- ECOSYSTEM
- Events
-
Introduced5.18.0Fixed5.18.3