{"id":"CVE-2022-49962","summary":"xhci: Fix null pointer dereference in remove if xHC has only one roothub","details":"In the Linux kernel, the following vulnerability has been resolved:\n\nxhci: Fix null pointer dereference in remove if xHC has only one roothub\n\nThe remove path in xhci platform driver tries to remove and put both main\nand shared hcds even if only a main hcd exists (one roothub)\n\nThis causes a null pointer dereference in reboot for those controllers.\n\nCheck that the shared_hcd exists before trying to remove it.","modified":"2026-04-03T13:14:42.556151Z","published":"2025-06-18T11:00:23.321Z","related":["SUSE-SU-2025:02264-1","SUSE-SU-2025:02321-1"],"database_specific":{"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/49xxx/CVE-2022-49962.json","cna_assigner":"Linux"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/4a593a62a9e3a25ab4bc37f612e4edec144f7f43"},{"type":"WEB","url":"https://git.kernel.org/stable/c/7081b2f34ff291ada012bd6abacaf7d51c4cf73f"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/49xxx/CVE-2022-49962.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-49962"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"e0fe986972f5b6b12086c73569206dd29c520be9"},{"fixed":"7081b2f34ff291ada012bd6abacaf7d51c4cf73f"},{"fixed":"4a593a62a9e3a25ab4bc37f612e4edec144f7f43"}]}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-49962.json"}}],"schema_version":"1.7.5"}