CVE-2022-49046

Description

In the Linux kernel, the following vulnerability has been resolved: i2c: dev: check return value when calling dev_set_name() If dev_set_name() fails, the dev_name() is null, check the return value of dev_set_name() to avoid the null-ptr-deref.

CVSS Metrics

• v3.1•MEDIUM•Score: 5.5CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

EPSS Trends

Current EPSS score: 0.01%• Percentile: 1%

Techniques & Countermeasures

• CWE-476•NULL Pointer Dereference

  The product dereferences a pointer that it expects to be valid but is NULL.

Affected Systems

• linux•linux

  ≥ 1413ef638abae4ab5621901cf4d8ef08a4a48ba6, < 2e539b17d4cbe5fb8b5152dd9a6e4a8828f97db2 | ≥ 1413ef638abae4ab5621901cf4d8ef08a4a48ba6, < 2f345bb14ad4744950499ff222e2899209297afa | ≥ 1413ef638abae4ab5621901cf4d8ef08a4a48ba6, < c74d77a2d07744147d734138acd6ce9dba715e5d | ≥ 1413ef638abae4ab5621901cf4d8ef08a4a48ba6, < 993eb48fa199b5f476df8204e652eff63dd19361 | 1c1b4327970c79c1a2d0c3becfc12b9696177c55 | c0d34399045609eda76882fa6d01fdfaf5b20d38 | f1f3b4150baf7c3aa6b4e6b81b8ff1909996d507 | a612c4ece2eb757011ae88a8410b48e523220b8d | 1bed86cfe5cb4529d036a14980d379aee8539982 | 8a231148135d2d08a3ef721d438cd468ea4209d2 | ≥ 4.4.225, < 4.5 | ≥ 4.9.225, < 4.10 | ≥ 4.14.182, < 4.15 | ≥ 4.19.125, < 4.20 | ≥ 5.4.43, < 5.5 | ≥ 5.6.15, < 5.7 | 5.7

• linux•linux_kernel

  ≥ 4.4.225, < 4.5 | ≥ 4.9.225, < 4.10 | ≥ 4.14.182, < 4.15 | ≥ 4.19.125, < 4.20 | ≥ 5.4.43, < 5.5 | ≥ 5.6.15, < 5.15.35 | ≥ 5.16, < 5.17.4 | 5.18:rc1 | 5.18:rc2

References (5)

• https://git.kernel.org/stable/c/2e539b17d4cbe5fb8b5152dd9a6e4a8828f97db2
• https://git.kernel.org/stable/c/2f345bb14ad4744950499ff222e2899209297afa
• https://git.kernel.org/stable/c/c74d77a2d07744147d734138acd6ce9dba715e5d
• https://git.kernel.org/stable/c/993eb48fa199b5f476df8204e652eff63dd19361
• https://lists.debian.org/debian-lts-announce/2025/05/msg00030.html