CVE-2022-49756

MEDIUM 5.5

phy: usb: sunplus: Fix potential null-ptr-deref in sp_usb_phy_probe()

CVSS Score

5.5

EPSS Score

0.0%

EPSS Percentile

0th

In the Linux kernel, the following vulnerability has been resolved: phy: usb: sunplus: Fix potential null-ptr-deref in sp_usb_phy_probe() sp_usb_phy_probe() will call platform_get_resource_byname() that may fail and return NULL. devm_ioremap() will use usbphy->moon4_res_mem->start as input, which may causes null-ptr-deref. Check the ret value of platform_get_resource_byname() to avoid the null-ptr-deref.

Vendor	linux
Product	linux
Ecosystems	Linux Kernel
Industries	Technology
Published	Mar 27, 2025
Last Updated	May 11, 2026

Stay Ahead of the Next One

Get instant alerts for linux linux

Be the first to know when new medium vulnerabilities affecting linux linux are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Linux / Linux

99d9ccd97385208b78b3d88e756451f4b70119fc < d838b5c99bcecd593b4710a93fce8fdbf122395b 99d9ccd97385208b78b3d88e756451f4b70119fc < 17eee264ef386ef30a69dd70e36f29893b85c170

Linux / Linux

6.1

References

NVD ↗ CVE.org ↗ EPSS Data ↗

git.kernel.org: https://git.kernel.org/stable/c/d838b5c99bcecd593b4710a93fce8fdbf122395b git.kernel.org: https://git.kernel.org/stable/c/17eee264ef386ef30a69dd70e36f29893b85c170