CVE-2022-49417

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2022-49417
In the Linux kernel, the following vulnerability has been resolved: iwlwifi: mei: fix potential NULL-ptr deref If SKB allocation fails, continue rather than using the NULL pointer. Coverity CID: 1497650

5.5 /10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 3.6

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References
Link Resource
https://git.kernel.org/stable/c/29b81de94d62b5e2704bb5106b3e701ca8d7c7a4 Patch
https://git.kernel.org/stable/c/5d8d06fd3a02919100b28f927bcb76481ec0a0e3 Patch
https://git.kernel.org/stable/c/78488a64aea94a3336ee97f345c1496e9bc5ebdf Patch
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
History

22 Sep 2025, 20:01

Type Values Removed Values Added
CPE cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
CVSS v2 : unknown
v3 : unknown 		v2 : unknown
v3 : 5.5
References () https://git.kernel.org/stable/c/29b81de94d62b5e2704bb5106b3e701ca8d7c7a4 - () https://git.kernel.org/stable/c/29b81de94d62b5e2704bb5106b3e701ca8d7c7a4 - Patch
References () https://git.kernel.org/stable/c/5d8d06fd3a02919100b28f927bcb76481ec0a0e3 - () https://git.kernel.org/stable/c/5d8d06fd3a02919100b28f927bcb76481ec0a0e3 - Patch
References () https://git.kernel.org/stable/c/78488a64aea94a3336ee97f345c1496e9bc5ebdf - () https://git.kernel.org/stable/c/78488a64aea94a3336ee97f345c1496e9bc5ebdf - Patch
CWE CWE-476
First Time Linux linux Kernel
Linux
Summary
  • (es) En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: iwlwifi: mei: soluciona la posible desreferencia de NULL-ptr. Si falla la asignación de SKB, continúa en lugar de usar el puntero NULL. Coverity CID: 1497650

26 Feb 2025, 07:01

Type Values Removed Values Added
New CVE
Information

Published : 2025-02-26 07:01

Updated : 2025-09-22 20:01

NVD link : CVE-2022-49417

Mitre link : CVE-2022-49417

CVE.ORG link : CVE-2022-49417

JSON object : View

Products Affected

linux

  • linux_kernel
CWE
CWE-476

NULL Pointer Dereference