{"vulnerability": "CVE-2022-49925", "sightings": [{"uuid": "190085f2-f15d-45a9-a78d-4fa62b56c802", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-49925", "type": "seen", "source": "https://t.me/cvedetector/24237", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2022-49925 - \"Linux RDMA Core Null Pointer Dereference Vulnerability\"\", \n  \"Content\": \"CVE ID : CVE-2022-49925 \nPublished : May 1, 2025, 3:16 p.m. | 1\u00a0hour, 9\u00a0minutes ago \nDescription : In the Linux kernel, the following vulnerability has been resolved:  \n  \nRDMA/core: Fix null-ptr-deref in ib_core_cleanup()  \n  \nKASAN reported a null-ptr-deref error:  \n  \n  KASAN: null-ptr-deref in range [0x0000000000000118-0x000000000000011f]  \n  CPU: 1 PID: 379  \n  Hardware name: QEMU Standard PC (i440FX + PIIX, 1996)  \n  RIP: 0010:destroy_workqueue+0x2f/0x740  \n  RSP: 0018:ffff888016137df8 EFLAGS: 00000202  \n  ...  \n  Call Trace:  \n   ib_core_cleanup+0xa/0xa1 [ib_core]  \n   __do_sys_delete_module.constprop.0+0x34f/0x5b0  \n   do_syscall_64+0x3a/0x90  \n   entry_SYSCALL_64_after_hwframe+0x63/0xcd  \n  RIP: 0033:0x7fa1a0d221b7  \n  ...  \n  \nIt is because the fail of roce_gid_mgmt_init() is ignored:  \n  \n ib_core_init()  \n   roce_gid_mgmt_init()  \n     gid_cache_wq = alloc_ordered_workqueue # fail  \n ...  \n ib_core_cleanup()  \n   roce_gid_mgmt_cleanup()  \n     destroy_workqueue(gid_cache_wq)  \n     # destroy an unallocated wq  \n  \nFix this by catching the fail of roce_gid_mgmt_init() in ib_core_init(). \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"01 May 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-05-01T19:01:27.000000Z"}]}