PT-2025-49615 · Linux+3 · Linux Kernel+3

Published

2025-12-09

Updated

2026-03-14

CVE-2022-50635

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.0.0-rc3-00007-gdcf8e5633e2e

Description The Linux kernel contains a flaw in the powerpc/kprobes subsystem. Specifically, a null pointer dereference can occur in the arch prepare kprobe() function when handling ftrace-based kprobes. This happens because the ppc inst read() function is called on a null pointer when prev->ainsn.insn is not properly checked. The issue arises when probing addresses with specific characteristics, such as those related to cmdline proc show. The vulnerability is triggered by attempting to read user page 0, potentially leading to a kernel crash.

Recommendations Update to a version later than 6.0.0-rc3-00007-gdcf8e5633e2e.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2022-50635

OESA-2026-1075

RHSA-2023:2458

RHSA-2024:3138

SUSE-SU-2026:0263-1

SUSE-SU-2026:0317-1

SUSE-SU-2026:0350-1

SUSE-SU-2026:0369-1

SUSE-SU-2026:0411-1

SUSE-SU-2026:0617-1

Affected Products

Centos

Debian

Linux Kernel

Red Hat

PT-2025-49615 · Linux+3 · Linux Kernel+3

CVE-2022-50635

Related Identifiers

Affected Products

References · 997