← back
CVE-2022-49273

rtc: pl031: fix rtc features null pointer dereference

CVSS 5.5 MEDIUMEPSS 0.2%CWE-476
In the Linux kernel, the following vulnerability has been resolved: rtc: pl031: fix rtc features null pointer dereference When there is no interrupt line, rtc alarm feature is disabled. The clearing of the alarm feature bit was being done prior to allocations of ldata->rtc device, resulting in a null pointer dereference. Clear RTC_FEATURE_ALARM after the rtc device is allocated.
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Affected products
Linux · Linux

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://git.kernel.org/stable/c/1b915703964f7e636961df04c540261dc55c6c70https://git.kernel.org/stable/c/cd2722e411e8ab7e5ae41102f6925fa13dffdac5https://git.kernel.org/stable/c/d274ce4a3dfd0b9a292667535578359b865765cbhttps://git.kernel.org/stable/c/ea6af39f3da50c86367a71eb3cc674ade3ed244c