CVE-2022-50178

Source
https://nvd.nist.gov/vuln/detail/CVE-2022-50178
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-50178.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2022-50178
Related
Published
2025-06-18T11:15:48Z
Modified
2025-06-18T16:01:33Z
Downstream
Summary
[none]
Details

In the Linux kernel, the following vulnerability has been resolved:

wifi: rtw89: 8852a: rfk: fix div 0 exception

The DPK is a kind of RF calibration whose algorithm is to fine tune parameters and calibrate, and check the result. If the result isn't good enough, it could adjust parameters and try again.

This issue is to read and show the result, but it could be a negative calibration result that causes divisor 0 and core dump. So, fix it by phy_div() that does division only if divisor isn't zero; otherwise, zero is adopted.

divide error: 0000 [#1] PREEMPT SMP NOPTI CPU: 1 PID: 728 Comm: wpasupplicant Not tainted 5.10.114-16019-g462a1661811a #1 <HASH:d024 28> RIP: 0010:rtw8852adpk+0x14ae/0x288f [rtw89core] RSP: 0018:ffffa9bb412a7520 EFLAGS: 00010246 RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000 RDX: 0000000000000000 RSI: 00000000000180fc RDI: ffffa141d01023c0 RBP: ffffa9bb412a76a0 R08: 0000000000001319 R09: 00000000ffffff92 R10: ffffffffc0292de3 R11: ffffffffc00d2f51 R12: 0000000000000000 R13: ffffa141d01023c0 R14: ffffffffc0290250 R15: ffffa141d0102638 FS: 00007fa99f5c2740(0000) GS:ffffa142e5e80000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 0000000013e8e010 CR3: 0000000110d2c000 CR4: 0000000000750ee0 PKRU: 55555554 Call Trace: rtw89corestaadd+0x95/0x9c [rtw89core <HASH:d239 29>] rtw89opsstastate+0x5d/0x108 [rtw89core <HASH:d239 29>] drvstastate+0x115/0x66f [mac80211 <HASH:81fe 30>] stainfoinsertrcu+0x45c/0x713 [mac80211 <HASH:81fe 30>] stainfoinsert+0xf/0x1b [mac80211 <HASH:81fe 30>] ieee80211prepconnection+0x9d6/0xb0c [mac80211 <HASH:81fe 30>] ieee80211mgdauth+0x2aa/0x352 [mac80211 <HASH:81fe 30>] cfg80211mlmeauth+0x160/0x1f6 [cfg80211 <HASH:00cd 31>] nl80211authenticate+0x2e5/0x306 [cfg80211 <HASH:00cd 31>] genlrcvmsg+0x371/0x3a1 ? nl80211stopschedscan+0xe5/0xe5 [cfg80211 <HASH:00cd 31>] ? genlrcv+0x36/0x36 netlinkrcvskb+0x8a/0xf9 genlrcv+0x28/0x36 netlinkunicast+0x27b/0x3a0 netlinksendmsg+0x2aa/0x469 socksendmsgnosec+0x49/0x4d _syssendmsg+0xe5/0x213 _syssendmsg+0xec/0x157 ? syscallenterfromusermode+0xd7/0x116 dosyscall64+0x43/0x55 entrySYSCALL64afterhwframe+0x44/0xa9 RIP: 0033:0x7fa99f6e689b

References

Affected packages

Debian:12 / linux

Package

Name
linux
Purl
pkg:deb/debian/linux?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
6.0.2-1

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:13 / linux

Package

Name
linux
Purl
pkg:deb/debian/linux?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
6.0.2-1

Ecosystem specific

{
    "urgency": "not yet assigned"
}