parisc: led: Fix potential null-ptr-deref in start_task()
CVE-2022-50415

Currently unrated

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
18 September 2025

What is CVE-2022-50415?

In the Linux kernel, the following vulnerability has been resolved:

parisc: led: Fix potential null-ptr-deref in start_task()

start_task() calls create_singlethread_workqueue() and not checked the ret value, which may return NULL. And a null-ptr-deref may happen:

start_task() create_singlethread_workqueue() # failed, led_wq is NULL queue_delayed_work() queue_delayed_work_on() __queue_delayed_work() # warning here, but continue __queue_work() # access wq->flags, null-ptr-deref

Check the ret value and return -ENOMEM if it is NULL.

Affected Version(s)

Linux 3499495205a676d85fcc2f3c28e35ec9b43c47e3

Linux 3499495205a676d85fcc2f3c28e35ec9b43c47e3

Linux 3499495205a676d85fcc2f3c28e35ec9b43c47e3

References

https://git.kernel.org/stable/c/c6db0c32f39684c89c97bc1ba...
https://git.kernel.org/stable/c/fc6d0f65f22040c6cc8a5ce03...
https://git.kernel.org/stable/c/fc307b2905a3dd75c50a53b4d...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2022-50415 : Null Pointer Dereference in Linux Kernel Affecting Parisc Architecture