CVE-2022-49083: 
Linux Kernel vulnerability analysis and mitigation

CVE-2022-49083 is a vulnerability in the Linux kernel's OMAP IOMMU (Input/Output Memory Management Unit) driver. The issue was discovered when a regression caused by commit 3f6634d997db triggered a NULL pointer dereference for some OMAP variants. The vulnerability was introduced by an earlier commit (6785eb9105e3) that changed the function return type but missed converting one place in the code (Kernel Git).

The vulnerability occurs in the OMAP IOMMU probe function where it returns 0 instead of ERR_PTR(-ENODEV) when checking for IOMMU elements. The issue manifests in the call chain: __iommu_probe_device → probe_iommu_group → bus_for_each_dev → bus_iommu_probe → bus_set_iommu → omap_iommu_init → do_one_initcall. The incorrect return value leads to a NULL pointer dereference in the IOMMU subsystem (Kernel Git).

The vulnerability could lead to a NULL pointer dereference in the Linux kernel's IOMMU subsystem, potentially causing system crashes or denial of service conditions on affected OMAP-based systems (Kernel Git).

The issue has been fixed by changing the return value from 0 to ERR_PTR(-ENODEV) in the OMAP IOMMU probe function. The fix was committed to the Linux kernel and backported to stable kernel versions (Kernel Git).