PT-2025-8597 · Linux+3 · Linux Kernel+3

Shuang Li

Published

2022-11-08

Updated

2025-02-27

CVE-2022-49664

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A NULL pointer dereference crash was reported in the Linux kernel. The issue occurs when a bc packet is received before the bc link is created, causing a dereference of a NULL pointer in the tipc link is up() function. This happens due to a gap between the insertion of a new node into the hashtable and the creation of the bc link. The crash is triggered when the tipc bcast rcv() function is called with a NULL pointer.

Recommendations To resolve this issue, apply the patch that moves the bc link creation before inserting the node into the hashtable. This ensures that the bc link is created before any bc packets are received, preventing the NULL pointer dereference crash.

Note: The exact version of the Linux kernel that contains the fix for this issue is not specified.

Exploit

Fix

NULL Pointer Dereference

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-476

Related Identifiers

CESA-2022_7683

CVE-2022-49664

RHSA-2022:7683

RHSA-2022:8267

RHSA-2022_7683

RHSA-2022_8267

Affected Products

Astra Linux

Centos

Linux Kernel

Red Hat

PT-2025-8597 · Linux+3 · Linux Kernel+3

CVE-2022-49664

Weakness Enumeration

Related Identifiers

Affected Products

References · 16