CVE-2022-50370 — NULL Pointer Dereference in Linux

CWE-476 — NULL Pointer Dereference5 documents5 sources

Severity

5.5MEDIUMNVD

EPSS

0.0%

top 95.55%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Linux Linux Kernel Debian Linux

Timeline

PublishedSep 17

Description

In the Linux kernel, the following vulnerability has been resolved: i2c: designware: Fix handling of real but unexpected device interrupts Commit c7b79a752871 ("mfd: intel-lpss: Add Intel Alder Lake PCH-S PCI IDs") caused a regression on certain Gigabyte motherboards for Intel Alder Lake-S where system crashes to NULL pointer dereference in i2c_dw_xfer_msg() when system resumes from S3 sleep state ("deep"). I was able to debug the issue on Gigabyte Z690 AORUS ELITE and made following notes: …

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages4 packages

▶NVDlinux/linux_kernel5.12 — 5.15.75+2

▶Debianlinux/linux_kernel< 6.0.3-1+2

▶CVEListV5linux/linuxc7b79a75287141cef5bbaeaf1c942269c08cd52e — 7fa5304c4b5b425d4a0b3acf10139a7f6108a85f+4

▶debiandebian/linux< linux 6.0.3-1 (bookworm)

Patches

Patch: git.kernel.org ↗Patch: git.kernel.org ↗Patch: git.kernel.org ↗

🔴Vulnerability Details

OSV

CVE-2022-50370: In the Linux kernel, the following vulnerability has been resolved: i2c: designware: Fix handling of real but unexpected device interrupts Commit c7b7↗2025-09-17

▶

GHSA

GHSA-589j-8g5m-4cxh: In the Linux kernel, the following vulnerability has been resolved: i2c: designware: Fix handling of real but unexpected device interrupts Commit c7↗2025-09-17

▶

📋Vendor Advisories

Red Hat

kernel: i2c: designware: Fix handling of real but unexpected device interrupts↗2025-09-17

▶

Debian

CVE-2022-50370: linux - In the Linux kernel, the following vulnerability has been resolved: i2c: design...↗2022

▶