CVE-2022-49731
Published: Feb 26, 2025
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: ata: libata-core: fix NULL pointer deref in ata_host_alloc_pinfo() In an unlikely (and probably wrong?) case that the 'ppi' parameter of ata_host_alloc_pinfo() points to an array starting with a NULL pointer, there's going to be a kernel oops as the 'pi' local variable won't get reassigned from the initial value of NULL. Initialize 'pi' instead to '&ata_dummy_port_info' to fix the possible kernel oops for good... Found by Linux Verification Center (linuxtesting.org) with the SVACE static analysis tool.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected f5cda257296fbd3683b1f568f2d94d3caaacf74d - < ca4693e6e06e4fd2b240c0fec47aa2498c94848eaffected f5cda257296fbd3683b1f568f2d94d3caaacf74d - < 1ac5efee33f29e704226506d429b84575a5d66f8affected f5cda257296fbd3683b1f568f2d94d3caaacf74d - < a810bd5af06977a847d1f202b22d7defd5c62497affected f5cda257296fbd3683b1f568f2d94d3caaacf74d - < 253334f84c81bc6a43af489f108c0bddad989eefaffected f5cda257296fbd3683b1f568f2d94d3caaacf74d - < 36cd19e7d4e5571d77a2ed20c5b6ef50cf57734a+3 more versions |
Linux | Linux | affected 2.6.22unaffected 0 - < 2.6.22unaffected 4.9.320 - <= 4.9.*unaffected 4.14.285 - <= 4.14.*unaffected 4.19.249 - <= 4.19.*+5 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now