Home

Description

In the Linux kernel, the following vulnerability has been resolved: power: supply: cw2015: Fix potential null-ptr-deref in cw_bat_probe() cw_bat_probe() calls create_singlethread_workqueue() and not checked the ret value, which may return NULL. And a null-ptr-deref may happen: cw_bat_probe() create_singlethread_workqueue() # failed, cw_bat->wq is NULL queue_delayed_work() queue_delayed_work_on() __queue_delayed_work() # warning here, but continue __queue_work() # access wq->flags, null-ptr-deref Check the ret value and return -ENOMEM if it is NULL.

PUBLISHED Reserved 2025-12-08 | Published 2025-12-09 | Updated 2025-12-09 | Assigner Linux

Product status

Default status
unaffected

b4c7715c10c106a041b0b3fabd26151c214ea394 (git) before f7e2ba8ed08138102f21f3fe6414498c93177fd8
affected

b4c7715c10c106a041b0b3fabd26151c214ea394 (git) before 5150b76aa2eb8bb8feb7f7a048417f9d39c3dd04
affected

b4c7715c10c106a041b0b3fabd26151c214ea394 (git) before 97f2b4ddb0aa700d673691a7d5e44d226d22bab7
affected

Default status
affected

5.8
affected

Any version before 5.8
unaffected

6.0.16 (semver)
unaffected

6.1.2 (semver)
unaffected

6.2 (original_commit_for_fix)
unaffected

References

git.kernel.org/...c/f7e2ba8ed08138102f21f3fe6414498c93177fd8

git.kernel.org/...c/5150b76aa2eb8bb8feb7f7a048417f9d39c3dd04

git.kernel.org/...c/97f2b4ddb0aa700d673691a7d5e44d226d22bab7

cve.org (CVE-2022-50634)

nvd.nist.gov (CVE-2022-50634)

Download JSON