CVE-2022-50374
BaseFortify
Publication date: 2025-09-17
Last updated on: 2025-12-11
Assigner: kernel.org
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| linux | linux_kernel | From 4.14.63 (inc) to 4.15 (exc) |
| linux | linux_kernel | From 4.14.63 (inc) to 5.10.150 (exc) |
| linux | linux_kernel | From 5.11 (inc) to 5.15.75 (exc) |
| linux | linux_kernel | From 5.16 (inc) to 5.19.17 (exc) |
| linux | linux_kernel | From 6.0 (inc) to 6.0.3 (exc) |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-908 | The product uses or accesses a resource that has not been initialized. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability in the Linux kernel's Bluetooth subsystem involves improper handling of a failure in percpu_init_rwsem(), which leads to a NULL pointer dereference in the function hci_uart_tty_close(). Specifically, rcu_sync_enter() is called without a prior rcu_sync_init() because hci_uart_tty_open() ignores the failure of percpu_init_rwsem(). Additionally, hci_uart_register_device() also ignores this failure, and hci_uart_unregister_device() fails to free the rwsem properly.
How can this vulnerability impact me? :
The vulnerability can cause a NULL pointer dereference in the Bluetooth subsystem of the Linux kernel, which may lead to system crashes or instability when Bluetooth devices are used or managed. This could result in denial of service or unexpected behavior in systems relying on Bluetooth functionality.