CVE-2022-49827

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to the fixed version

Description A potential null pointer dereference issue has been identified in the Linux kernel, specifically in the drm vblank destroy worker() function. This issue arises when drm vblank init() calls drmm add action or reset() with drm vblank init release() as the action, and if drmm add action() fails, it directly calls drm vblank init release() with a vblank whose worker is NULL, resulting in a null pointer dereference in kthread destroy worker(). A NULL check has been added before calling drm vblank destroy worker() to resolve this issue.

Recommendations To resolve this issue, update the Linux kernel to a version that includes the fix for the null pointer dereference in drm vblank destroy worker(). As a temporary workaround, consider disabling the drm vblank init() function until a patch is available. Restrict access to the drm module to minimize the risk of exploitation. Avoid using the drm vblank init release() function in the affected kernel versions until the issue is resolved.