← volver
CVE-2022-49273

rtc: pl031: fix rtc features null pointer dereference

CVSS 5.5 MEDIUMEPSS 0.2%CWE-476
In the Linux kernel, the following vulnerability has been resolved: rtc: pl031: fix rtc features null pointer dereference When there is no interrupt line, rtc alarm feature is disabled. The clearing of the alarm feature bit was being done prior to allocations of ldata->rtc device, resulting in a null pointer dereference. Clear RTC_FEATURE_ALARM after the rtc device is allocated.
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Productos afectados
Linux · Linux

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://git.kernel.org/stable/c/1b915703964f7e636961df04c540261dc55c6c70https://git.kernel.org/stable/c/cd2722e411e8ab7e5ae41102f6925fa13dffdac5https://git.kernel.org/stable/c/d274ce4a3dfd0b9a292667535578359b865765cbhttps://git.kernel.org/stable/c/ea6af39f3da50c86367a71eb3cc674ade3ed244c