CVE-2022-49507

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.18.0-rc2

Description A slab-out-of-bounds read issue was discovered in the Linux kernel, specifically in the regmap init function. This occurred when the da9121 device was probed with an invalid Device Tree (DT) configuration, resulting in the chip->subvariant id being set to -EINVAL. Later, the da9121 assign chip model function accessed the regmap without initializing it, leading to the out-of-bounds read. The issue was identified through a KASAN report.

Recommendations For Linux kernel versions prior to 5.18.0-rc2, consider updating to a newer version that includes the fix for the da9121 assign chip model function, which now returns -EINVAL if chip->subvariant id is invalid. As a temporary workaround, ensure that all Device Tree configurations for the da9121 device are valid to prevent the chip->subvariant id from being set to -EINVAL.