CVE-2022-49848

MEDIUM 5.5

phy: qcom-qmp-combo: fix NULL-deref on runtime resume

CVSS Score

5.5

EPSS Score

0.0%

EPSS Percentile

0th

In the Linux kernel, the following vulnerability has been resolved: phy: qcom-qmp-combo: fix NULL-deref on runtime resume Commit fc64623637da ("phy: qcom-qmp-combo,usb: add support for separate PCS_USB region") started treating the PCS_USB registers as potentially separate from the PCS registers but used the wrong base when no PCS_USB offset has been provided. Fix the PCS_USB base used at runtime resume to prevent dereferencing a NULL pointer on platforms that do not provide a PCS_USB offset (e.g. SC7180).

Vendor	linux
Product	linux
Ecosystems	Linux Kernel
Industries	Technology
Published	May 1, 2025
Last Updated	May 11, 2026

Stay Ahead of the Next One

Get instant alerts for linux linux

Be the first to know when new medium vulnerabilities affecting linux linux are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Linux / Linux

fc64623637da5e964566628bc0e660e93dc7a395 < c559a8b5cfa3db196ced0257b288f17027621348 fc64623637da5e964566628bc0e660e93dc7a395 < 04948e757148f870a31f4887ea2239403f516c3c

Linux / Linux

6.0

References

NVD ↗ CVE.org ↗ EPSS Data ↗

git.kernel.org: https://git.kernel.org/stable/c/c559a8b5cfa3db196ced0257b288f17027621348 git.kernel.org: https://git.kernel.org/stable/c/04948e757148f870a31f4887ea2239403f516c3c