Vulnerabilities > CVE-2022-3115 - NULL Pointer Dereference vulnerability in Linux Kernel 5.16.0

047910
CVSS 5.5 - MEDIUM
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
LOW
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
HIGH
local
low complexity
linux
CWE-476

Summary

An issue was discovered in the Linux kernel through 5.16-rc6. malidp_crtc_reset in drivers/gpu/drm/arm/malidp_crtc.c lacks check of the return value of kzalloc() and will cause the null pointer dereference.

Vulnerable Configurations

Part Description Count
OS
Linux
7

Common Weakness Enumeration (CWE)