296,213
Total vulnerabilities in the database
In the Linux kernel, the following vulnerability has been resolved:
net: phy: dp83822: Fix null pointer access on DP83825/DP83826 devices
The probe() function is only used for the DP83822 PHY, leaving the private data pointer uninitialized for the smaller DP83825/26 models. While all uses of the private data structure are hidden in 82822 specific callbacks, configuring the interrupt is shared across all models. This causes a NULL pointer dereference on the smaller PHYs as it accesses the private data unchecked. Verifying the pointer avoids that.
| Software | From | Fixed in |
|---|---|---|
| linux / linux_kernel | 6.2-rc1 | 6.2-rc1.x |
| linux / linux_kernel | 6.2-rc2 | 6.2-rc2.x |
| linux / linux_kernel | 6.2-rc3 | 6.2-rc3.x |
| linux / linux_kernel | 6.2-rc4 | 6.2-rc4.x |
| linux / linux_kernel | 6.2-rc5 | 6.2-rc5.x |
| linux / linux_kernel | 6.2-rc6 | 6.2-rc6.x |
| linux / linux_kernel | 5.10 | 5.10.168 |
| linux / linux_kernel | 5.11 | 5.15.93 |
| linux / linux_kernel | 5.16 | 6.1.11 |