← back
CVE-2022-49615

ASoC: rt711-sdca: fix kernel NULL pointer dereference when IO error

CVSS 5.5 MEDIUMEPSS 0.2%CWE-476
In the Linux kernel, the following vulnerability has been resolved: ASoC: rt711-sdca: fix kernel NULL pointer dereference when IO error The initial settings will be written before the codec probe function. But, the rt711->component doesn't be assigned yet. If IO error happened during initial settings operations, it will cause the kernel panic. This patch changed component->dev to slave->dev to fix this issue.
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Affected products
Linux · Linux

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://git.kernel.org/stable/c/1df793d479bef546569fc2e409ff8bb3f0fb8e99https://git.kernel.org/stable/c/269be8b2907378adf72d7347cfa43ef230351a06https://git.kernel.org/stable/c/7bb71133cae88d3003a3490b97864af76533072b