CVE-2022-50847 — Access of Uninitialized Pointer in Linux

CWE-824 — Access of Uninitialized Pointer7 documents6 sources

Severity

4.7MEDIUM

No vector

EPSS

0.0%

top 93.24%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Linux Linux Kernel Debian Linux

Timeline

PublishedDec 30

Description

In the Linux kernel, the following vulnerability has been resolved: drm/bridge: it6505: Initialize AUX channel in it6505_i2c_probe During device boot, the HPD interrupt could be triggered before the DRM subsystem registers it6505 as a DRM bridge. In such cases, the driver tries to access AUX channel and causes NULL pointer dereference. Initializing the AUX channel earlier to prevent such error.

Affected Packages4 packages

▶Linuxlinux/linux_kernel5.18.0 — 6.0.16+1

▶Debianlinux/linux_kernel< 6.1.4-1+2

▶CVEListV5linux/linuxb5c84a9edcd418cd055becad6a22439e7c5e3bf8 — 8ed8505803774fc3f36a432718036c21cc51e2ba+3

▶debiandebian/linux< linux 6.1.4-1 (bookworm)

🔴Vulnerability Details

OSV

drm/bridge: it6505: Initialize AUX channel in it6505_i2c_probe↗2025-12-30

▶

OSV

CVE-2022-50847: In the Linux kernel, the following vulnerability has been resolved: drm/bridge: it6505: Initialize AUX channel in it6505_i2c_probe During device boot,↗2025-12-30

▶

GHSA

GHSA-78f2-hq34-889m: In the Linux kernel, the following vulnerability has been resolved: drm/bridge: it6505: Initialize AUX channel in it6505_i2c_probe During device boo↗2025-12-30

▶

📋Vendor Advisories

Red Hat

kernel: drm/bridge: it6505: Initialize AUX channel in it6505_i2c_probe↗2025-12-30

▶

Debian

CVE-2022-50847: linux - In the Linux kernel, the following vulnerability has been resolved: drm/bridge:...↗2022

▶

🕵️Threat Intelligence

Wiz

CVE-2022-50847 Impact, Exploitability, and Mitigation Steps | Wiz↗

▶