vulnerability
Ubuntu: (CVE-2022-49262): linux vulnerability
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 5 | (AV:L/AC:L/Au:S/C:N/I:N/A:C) | Feb 26, 2025 | Mar 19, 2025 | Sep 24, 2025 |
Description
In the Linux kernel, the following vulnerability has been resolved:
crypto: octeontx2 - remove CONFIG_DM_CRYPT check
No issues were found while using the driver with dm-crypt enabled. So
CONFIG_DM_CRYPT check in the driver can be removed.
This also fixes the NULL pointer dereference in driver release if
CONFIG_DM_CRYPT is enabled.
...
Unable to handle kernel NULL pointer dereference at virtual address 0000000000000008
...
Call trace:
crypto_unregister_alg+0x68/0xfc
crypto_unregister_skciphers+0x44/0x60
otx2_cpt_crypto_exit+0x100/0x1a0
otx2_cptvf_remove+0xf8/0x200
pci_device_remove+0x3c/0xd4
__device_release_driver+0x188/0x234
device_release_driver+0x2c/0x4c
...
Solutions
References
- CVE-2022-49262
- https://attackerkb.com/topics/CVE-2022-49262
- CWE-476
- URL-https://git.kernel.org/linus/2d841af23ae8f398c85dd1ff2dc24b5ec8ba4569
- URL-https://git.kernel.org/stable/c/2d841af23ae8f398c85dd1ff2dc24b5ec8ba4569
- URL-https://git.kernel.org/stable/c/a1bf728f3388ac3a2c2dffa57e25622e90b9f6f2
- URL-https://git.kernel.org/stable/c/a462214866eebbca87e13ff6d73092b1c4895624
- URL-https://git.kernel.org/stable/c/e6374086f249295121384bfaa7cdcc8d461146f0
- URL-https://www.cve.org/CVERecord?id=CVE-2022-49262
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.