What is the severity of CVE-2022-49487?

CVE-2022-49487 has been classified as a moderate severity vulnerability in the Linux kernel.

How do I fix CVE-2022-49487?

To address CVE-2022-49487, update your Linux kernel to a version that is beyond 5.18.3 or between 5.11 and 5.15.46.

Which versions of the Linux kernel are affected by CVE-2022-49487?

CVE-2022-49487 affects Linux kernel versions between 5.11 and 5.15.46, as well as between 5.16 and 5.17.14 and from 5.18 to 5.18.3.

What component of the Linux kernel is impacted by CVE-2022-49487?

CVE-2022-49487 affects the MTD (Memory Technology Devices) component within the Linux kernel.

What is the nature of the vulnerability in CVE-2022-49487?

CVE-2022-49487 is a null pointer dereference vulnerability that can occur if platform_get_resource() returns NULL.

Vulnerability/
CVE-2022-49487

medium

5.5

CWE

476

26/2/2025

17/3/2025

CVE-2022-49487: mtd: rawnand: intel: fix possible null-ptr-deref in ebu_nand_probe()

First published: Wed Feb 26 2025(Updated: )

In the Linux kernel, the following vulnerability has been resolved: mtd: rawnand: intel: fix possible null-ptr-deref in ebu_nand_probe() It will cause null-ptr-deref when using 'res', if platform_get_resource() returns NULL, so move using 'res' after devm_ioremap_resource() that will check it to avoid null-ptr-deref.

Credit: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Affected Software	Affected Version	How to fix
Linux Kernel
Linux Kernel	>=5.11<5.15.46
Linux Kernel	>=5.16<5.17.14
Linux Kernel	>=5.18<5.18.3

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2022-49487?
CVE-2022-49487 has been classified as a moderate severity vulnerability in the Linux kernel.
How do I fix CVE-2022-49487?
To address CVE-2022-49487, update your Linux kernel to a version that is beyond 5.18.3 or between 5.11 and 5.15.46.
Which versions of the Linux kernel are affected by CVE-2022-49487?
CVE-2022-49487 affects Linux kernel versions between 5.11 and 5.15.46, as well as between 5.16 and 5.17.14 and from 5.18 to 5.18.3.
What component of the Linux kernel is impacted by CVE-2022-49487?
CVE-2022-49487 affects the MTD (Memory Technology Devices) component within the Linux kernel.
What is the nature of the vulnerability in CVE-2022-49487?
CVE-2022-49487 is a null pointer dereference vulnerability that can occur if platform_get_resource() returns NULL.

collector/mitre-cve
source/MITRE
agent/first-publish-date
agent/type
agent/title
agent/references
agent/author
agent/source
agent/description
collector/nvd-api
source/NVD
agent/software-canonical-lookup
agent/remedy
agent/severity
agent/weakness
agent/last-modified-date
agent/softwarecombine
agent/event
agent/tags
agent/guess-ai
agent/software-canonical-lookup-request
vendor/linux
canonical/linux kernel
version/linux kernel/5.11
version/linux kernel/5.16
version/linux kernel/5.18

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.

CVE-2022-49487: mtd: rawnand: intel: fix possible null-ptr-deref in ebu_nand_probe()

Remedy

Remedy

Remedy

Remedy

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2022-49487?

How do I fix CVE-2022-49487?

Which versions of the Linux kernel are affected by CVE-2022-49487?

What component of the Linux kernel is impacted by CVE-2022-49487?

What is the nature of the vulnerability in CVE-2022-49487?

Company

Resources

Contact