PT-2025-25903 · Linux+6 · Linux Kernel+6

Published

2022-08-21

·

Updated

2025-07-29

·

CVE-2022-49977

CVSS v3.1

5.5

Medium

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to the fixed version
Description A NULL pointer dereference issue has been identified in the Linux kernel, specifically in the ftrace functionality. This issue arises when ftrace startup enable fails, causing the ops to remain in the ftrace ops list even after ftrace disabled is set to 1. As a result, when is ftrace trampoline is called, it may access a NULL pointer, leading to a kernel crash. The issue has been reported by Syzkaller, which detected a kernel NULL pointer dereference.
Recommendations To resolve this issue, update the Linux kernel to a version that includes the fix for the NULL pointer dereference in is ftrace trampoline. As a temporary workaround, consider disabling the ftrace functionality until a patch is available. Restrict access to the ftrace ops list to minimize the risk of exploitation. Avoid using dynamically allocated ops in the ftrace ops list until the issue is resolved.

Exploit

Fix

NULL Pointer Dereference

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-476

Related Identifiers

ALSA-2025:11850
ALSA-2025:11851
BDU:2026-02356
CESA-2025_11850
CESA-2025_11851
CVE-2022-49977
INFSA-2025_11850
INFSA-2025_11851
RHSA-2024:2394
RHSA-2024_2394
RHSA-2025:11850
RHSA-2025:11851
RHSA-2025:14511
RHSA-2025:14691
RHSA-2025:14692
RHSA-2025:14696
RHSA-2025:14742
RHSA-2025:14744
RHSA-2025:14749
RHSA-2025_11850
RHSA-2025_11851
SUSE-SU-2025:02264-1
SUSE-SU-2025:02308-1
SUSE-SU-2025:02320-1
SUSE-SU-2025:02321-1
SUSE-SU-2025:02322-1
SUSE-SU-2025:02334-1
SUSE-SU-2025:02537-1
SUSE-SU-2025:2264-1
SUSE-SU-2025_02264-1
SUSE-SU-2025_02308-1
SUSE-SU-2025_02334-1
SUSE-SU-2025_02537-1

Affected Products

Almalinux
Astra Linux
Centos
Linux Kernel
Red Hat
Rocky Linux
Suse