CVE - CVE-2022-49221

CVE-ID
CVE-2022-49221	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
In the Linux kernel, the following vulnerability has been resolved: drm/msm/dp: populate connector of struct dp_panel DP CTS test case 4.2.2.6 has valid edid with bad checksum on purpose and expect DP source return correct checksum. During drm edid read, correct edid checksum is calculated and stored at connector::real_edid_checksum. The problem is struct dp_panel::connector never be assigned, instead the connector is stored in struct msm_dp::connector. When we run compliance testing test case 4.2.2.6 dp_panel_handle_sink_request() won't have a valid edid set in struct dp_panel::edid so we'll try to use the connectors real_edid_checksum and hit a NULL pointer dereference error because the connector pointer is never assigned. Changes in V2: -- populate panel connector at msm_dp_modeset_init() instead of at dp_panel_read_sink_caps() Changes in V3: -- remove unhelpful kernel crash trace commit text -- remove renaming dp_display parameter to dp Changes in V4: -- add more details to commit text Changes in v10: -- group into one series Changes in v11: -- drop drm/msm/dp: dp_link_parse_sink_count() return immediately if aux read Signee-off-by: Kuogee Hsieh <quic_khsieh@quicinc.com>
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
MISC:https://git.kernel.org/stable/c/104074ebc0c3f358dd1ee944fbcde92c6e5a21dd URL:https://git.kernel.org/stable/c/104074ebc0c3f358dd1ee944fbcde92c6e5a21dd MISC:https://git.kernel.org/stable/c/413c62697b61226a236c8b1f5cd64dcf42bcc12f URL:https://git.kernel.org/stable/c/413c62697b61226a236c8b1f5cd64dcf42bcc12f MISC:https://git.kernel.org/stable/c/5e602f5156910c7b19661699896cb6e3fb94fab9 URL:https://git.kernel.org/stable/c/5e602f5156910c7b19661699896cb6e3fb94fab9 MISC:https://git.kernel.org/stable/c/9525b8bcae8b99188990b56484799cf4b1b43786 URL:https://git.kernel.org/stable/c/9525b8bcae8b99188990b56484799cf4b1b43786 MISC:https://git.kernel.org/stable/c/fbba600f432a360b42452fee79d1fb35d3aa8aeb URL:https://git.kernel.org/stable/c/fbba600f432a360b42452fee79d1fb35d3aa8aeb
Assigning CNA
kernel.org
Date Record Created
20250226	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20250226)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)