CVE-2022-49173

medium

Description

In the Linux kernel, the following vulnerability has been resolved: spi: fsi: Implement a timeout for polling status The data transfer routines must poll the status register to determine when more data can be shifted in or out. If the hardware gets into a bad state, these polling loops may never exit. Prevent this by returning an error if a timeout is exceeded.

References

https://git.kernel.org/stable/c/dac1438f347d3b8cf892105c94e254f29c5764de

https://git.kernel.org/stable/c/d4982ceb137e6ecd2b466a6de639790a148cf19a

https://git.kernel.org/stable/c/89b35e3f28514087d3f1e28e8f5634fbfd07c554

Details

Source: Mitre, NVD

Published: 2025-02-26

Updated: 2025-02-26

Risk Information

CVSS v2

Base Score: 4.6

Vector: CVSS2#AV:L/AC:L/Au:S/C:N/I:N/A:C

Severity: Medium

CVSS v3

Base Score: 5.5

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Severity: Medium