CVE-2022-49731

MEDIUM 5.5

ata: libata-core: fix NULL pointer deref in ata_host_alloc_pinfo()

CVSS Score

5.5

EPSS Score

0.0%

EPSS Percentile

0th

In the Linux kernel, the following vulnerability has been resolved: ata: libata-core: fix NULL pointer deref in ata_host_alloc_pinfo() In an unlikely (and probably wrong?) case that the 'ppi' parameter of ata_host_alloc_pinfo() points to an array starting with a NULL pointer, there's going to be a kernel oops as the 'pi' local variable won't get reassigned from the initial value of NULL. Initialize 'pi' instead to '&ata_dummy_port_info' to fix the possible kernel oops for good... Found by Linux Verification Center (linuxtesting.org) with the SVACE static analysis tool.

Vendor	linux
Product	linux
Ecosystems	Linux Kernel
Industries	Technology
Published	Feb 26, 2025
Last Updated	May 11, 2026

Stay Ahead of the Next One

Get instant alerts for linux linux

Be the first to know when new medium vulnerabilities affecting linux linux are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Linux / Linux

f5cda257296fbd3683b1f568f2d94d3caaacf74d < ca4693e6e06e4fd2b240c0fec47aa2498c94848e f5cda257296fbd3683b1f568f2d94d3caaacf74d < 1ac5efee33f29e704226506d429b84575a5d66f8 f5cda257296fbd3683b1f568f2d94d3caaacf74d < a810bd5af06977a847d1f202b22d7defd5c62497 f5cda257296fbd3683b1f568f2d94d3caaacf74d < 253334f84c81bc6a43af489f108c0bddad989eef f5cda257296fbd3683b1f568f2d94d3caaacf74d < 36cd19e7d4e5571d77a2ed20c5b6ef50cf57734a f5cda257296fbd3683b1f568f2d94d3caaacf74d < ff128fbea720bf763fa345680dda5f050bc24a47 f5cda257296fbd3683b1f568f2d94d3caaacf74d < 07cbdb4807d369fbda73062a91b570c4dc5ec429 f5cda257296fbd3683b1f568f2d94d3caaacf74d < bf476fe22aa1851bab4728e0c49025a6a0bea307

Linux / Linux

2.6.22

References

NVD ↗ CVE.org ↗ EPSS Data ↗