CVE-2022-50073

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A NULL pointer dereference bug has been identified in the Linux kernel, specifically in the tap driver. The issue occurs when the skb->dev field is null, which is required by the dev parse header protocol function. This bug is triggered when tap get user calls virtio net hdr to skb, and the skb->dev field is set after this call. The problem arises because dev parse header protocol needs the skb->dev field to be valid. Setting skb->dev before the call in tap.c resolves the issue.

Recommendations To resolve this issue, set skb->dev before the call to virtio net hdr to skb in tap.c. As a temporary workaround, consider restricting the use of the tap driver until a patch is available.

Exploit

Fix

DoS

NULL Pointer Dereference

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-476

Related Identifiers

AZL-70355

CESA-2021_4356

CVE-2022-50073

RHSA-2021:4356

RHSA-2021_4356

RHSA-2024:9315

RHSA-2024_9315

SUSE-SU-2025:02264-1

SUSE-SU-2025:02321-1

SUSE-SU-2025:02322-1

SUSE-SU-2025:02334-1

SUSE-SU-2025:02537-1

SUSE-SU-2025:2264-1

SUSE-SU-2025_02264-1

SUSE-SU-2025_02334-1

SUSE-SU-2025_02537-1

Affected Products

Centos

Debian

Linux Kernel

Red Hat

Suse

CVE-2022-50073

Weakness Enumeration

Related Identifiers

Affected Products

References · 731