{"dataType":"CVE_RECORD","dataVersion":"5.1","cveMetadata":{"cveId":"CVE-2022-48952","assignerOrgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","state":"PUBLISHED","assignerShortName":"Linux","dateReserved":"2024-08-22T01:27:53.626Z","datePublished":"2024-10-21T20:05:39.755Z","dateUpdated":"2025-05-04T12:44:04.996Z"},"containers":{"cna":{"providerMetadata":{"orgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","shortName":"Linux","dateUpdated":"2025-05-04T12:44:04.996Z"},"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nPCI: mt7621: Add sentinel to quirks table\n\nCurrent driver is missing a sentinel in the struct soc_device_attribute\narray, which causes an oops when assessed by the\nsoc_device_match(mt7621_pcie_quirks_match) call.\n\nThis was only exposed once the CONFIG_SOC_MT7621 mt7621 soc_dev_attr\nwas fixed to register the SOC as a device, in:\n\ncommit 7c18b64bba3b (\"mips: ralink: mt7621: do not use kzalloc too early\")\n\nFix it by adding the required sentinel."}],"affected":[{"product":"Linux","vendor":"Linux","defaultStatus":"unaffected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["drivers/pci/controller/pcie-mt7621.c"],"versions":[{"version":"b483b4e4d3f6bfd5089b9e6dc9ba259879c6ce6f","lessThan":"3e9c395ef2d52975b2c2894d2da09d6db2958bc6","status":"affected","versionType":"git"},{"version":"b483b4e4d3f6bfd5089b9e6dc9ba259879c6ce6f","lessThan":"cb7323ece786f243f6d6ccf2e5b2b27b736bdc04","status":"affected","versionType":"git"},{"version":"b483b4e4d3f6bfd5089b9e6dc9ba259879c6ce6f","lessThan":"a4997bae1b5b012c8a6e2643e26578a7bc2cae36","status":"affected","versionType":"git"},{"version":"b483b4e4d3f6bfd5089b9e6dc9ba259879c6ce6f","lessThan":"19098934f910b4d47cb30251dd39ffa57bef9523","status":"affected","versionType":"git"},{"version":"21fd877300b01d25c5807c327848fdc7c813cf0e","status":"affected","versionType":"git"}]},{"product":"Linux","vendor":"Linux","defaultStatus":"affected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["drivers/pci/controller/pcie-mt7621.c"],"versions":[{"version":"5.5","status":"affected"},{"version":"0","lessThan":"5.5","status":"unaffected","versionType":"semver"},{"version":"5.15.86","lessThanOrEqual":"5.15.*","status":"unaffected","versionType":"semver"},{"version":"6.0.15","lessThanOrEqual":"6.0.*","status":"unaffected","versionType":"semver"},{"version":"6.1.1","lessThanOrEqual":"6.1.*","status":"unaffected","versionType":"semver"},{"version":"6.2","lessThanOrEqual":"*","status":"unaffected","versionType":"original_commit_for_fix"}]}],"cpeApplicability":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.5","versionEndExcluding":"5.15.86"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.5","versionEndExcluding":"6.0.15"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.5","versionEndExcluding":"6.1.1"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.5","versionEndExcluding":"6.2"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.4.17"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/3e9c395ef2d52975b2c2894d2da09d6db2958bc6"},{"url":"https://git.kernel.org/stable/c/cb7323ece786f243f6d6ccf2e5b2b27b736bdc04"},{"url":"https://git.kernel.org/stable/c/a4997bae1b5b012c8a6e2643e26578a7bc2cae36"},{"url":"https://git.kernel.org/stable/c/19098934f910b4d47cb30251dd39ffa57bef9523"}],"title":"PCI: mt7621: Add sentinel to quirks table","x_generator":{"engine":"bippy-1.2.0"}},"adp":[{"metrics":[{"other":{"type":"ssvc","content":{"id":"CVE-2022-48952","role":"CISA Coordinator","options":[{"Exploitation":"none"},{"Automatable":"no"},{"Technical Impact":"partial"}],"version":"2.0.3","timestamp":"2024-10-22T13:21:30.198741Z"}}}],"title":"CISA ADP Vulnrichment","providerMetadata":{"orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP","dateUpdated":"2024-10-22T13:28:40.502Z"}}]}}