Most recent sightings.

https://vulnerability.circl.lu/sightings/feed Most recent sightings. 2026-05-11T04:13:25.815930+00:00 Vulnerability-Lookup info@circl.lu python-feedgen Contains only the most 10 recent sightings. https://vulnerability.circl.lu/sighting/338812e3-5746-4aa3-b868-0621cebbc9f6/export 338812e3-5746-4aa3-b868-0621cebbc9f6 2026-05-11T04:13:26.128650+00:00 Automation user http://cve.circl.lu/user/automation {"uuid": "338812e3-5746-4aa3-b868-0621cebbc9f6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-49299", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/16468", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-49299\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: In the Linux kernel, the following vulnerability has been resolved:\n\nusb: dwc2: gadget: don't reset gadget's driver->bus\n\nUDC driver should not touch gadget's driver internals, especially it\nshould not reset driver->bus. This wasn't harmful so far, but since\ncommit fc274c1e9973 (\"USB: gadget: Add a new bus for gadgets\") gadget\nsubsystem got it's own bus and messing with ->bus triggers the\nfollowing NULL pointer dereference:\n\ndwc2 12480000.hsotg: bound driver g_ether\n8<--- cut here ---\nUnable to handle kernel NULL pointer dereference at virtual address 00000000\n[00000000] *pgd=00000000\nInternal error: Oops: 5 [#1] SMP ARM\nModules linked in: ...\nCPU: 0 PID: 620 Comm: modprobe Not tainted 5.18.0-rc5-next-20220504 #11862\nHardware name: Samsung Exynos (Flattened Device Tree)\nPC is at module_add_driver+0x44/0xe8\nLR is at sysfs_do_create_link_sd+0x84/0xe0\n...\nProcess modprobe (pid: 620, stack limit = 0x(ptrval))\n...\n module_add_driver from bus_add_driver+0xf4/0x1e4\n bus_add_driver from driver_register+0x78/0x10c\n driver_register from usb_gadget_register_driver_owner+0x40/0xb4\n usb_gadget_register_driver_owner from do_one_initcall+0x44/0x1e0\n do_one_initcall from do_init_module+0x44/0x1c8\n do_init_module from load_module+0x19b8/0x1b9c\n load_module from sys_finit_module+0xdc/0xfc\n sys_finit_module from ret_fast_syscall+0x0/0x54\nException stack(0xf1771fa8 to 0xf1771ff0)\n...\ndwc2 12480000.hsotg: new device is high-speed\n---[ end trace 0000000000000000 ]---\n\nFix this by removing driver->bus entry reset.\n\ud83d\udccf Published: 2025-02-26T02:10:34.977Z\n\ud83d\udccf Modified: 2025-05-15T12:28:27.659Z\n\ud83d\udd17 References:\n1. https://git.kernel.org/stable/c/5127c0f365265bb69cd776ad6e4b872c309f3fa8\n2. https://git.kernel.org/stable/c/efb15ff4a77fe053c941281775fefa91c87770e0\n3. https://git.kernel.org/stable/c/bee8f9808a7e82addfc73a0973b16a8bb684205b\n4. https://git.kernel.org/stable/c/d232ca0bbc7d03144bad0ffd1792c3352bfd03fa\n5. https://git.kernel.org/stable/c/5b0c0298f7c3b57417f1729ec4071f76864b72dd\n6. https://git.kernel.org/stable/c/547ebdc200b862dff761ff4890f66d8217c33316\n7. https://git.kernel.org/stable/c/172cfc167c8ee6238f24f9c16efd598602af643c\n8. https://git.kernel.org/stable/c/d2159feb9d28ce496d77df98313ab454646372ac\n9. https://git.kernel.org/stable/c/3120aac6d0ecd9accf56894aeac0e265f74d3d5a", "creation_timestamp": "2025-05-15T12:34:14.000000Z"} 2025-05-15T12:34:14+00:00