CVE-2022-50327 — NULL Pointer Dereference in Linux

CWE-476 — NULL Pointer Dereference16 documents8 sources

Severity

5.5MEDIUMNVD

EPSS

0.0%

top 93.38%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Linux Linux Kernel Debian Linux

Timeline

PublishedSep 15

Latest updateDec 16

Description

In the Linux kernel, the following vulnerability has been resolved: ACPI: processor: idle: Check acpi_fetch_acpi_dev() return value The return value of acpi_fetch_acpi_dev() could be NULL, which would cause a NULL pointer dereference to occur in acpi_device_hid(). [ rjw: Subject and changelog edits, added empty line after if () ]

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages3 packages

▶NVDlinux/linux_kernel4.8 — 5.4.297+4

▶Debianlinux/linux_kernel< 5.10.244-1+3

▶CVEListV5linux/linuxa36a7fecfe6071732075ad5aa31196adce13181b — 8e8b5f12ee4ab6f5d252c9ca062a4ada9554e6d9+6

Also affects: Debian Linux 11.0

Patches

Patch: git.kernel.org ↗Patch: git.kernel.org ↗Patch: git.kernel.org ↗

🔴Vulnerability Details

GHSA

GHSA-6xpj-qhg8-8h28: In the Linux kernel, the following vulnerability has been resolved: ACPI: processor: idle: Check acpi_fetch_acpi_dev() return value The return value↗2025-09-15

▶

CVEList

ACPI: processor: idle: Check acpi_fetch_acpi_dev() return value↗2025-09-15

▶

OSV

CVE-2022-50327: In the Linux kernel, the following vulnerability has been resolved: ACPI: processor: idle: Check acpi_fetch_acpi_dev() return value The return value o↗2025-09-15

▶

📋Vendor Advisories

Ubuntu

Linux kernel (Azure) vulnerabilities↗2025-12-16

▶

Ubuntu

Linux kernel (KVM) vulnerabilities↗2025-12-15

▶

Ubuntu

Linux kernel (Raspberry Pi) vulnerabilities↗2025-12-15

▶

Ubuntu

Linux kernel vulnerabilities↗2025-12-05

▶

Ubuntu

Linux kernel (Azure) vulnerabilities↗2025-12-05

▶