Fixed
Created: Dec 10, 2025
Updated: Dec 11, 2025
Resolved Date: Dec 10, 2025
Found In Version: 10.22.33.1
Fix Version: 10.22.33.13
Severity: Standard
Applicable for: Wind River Linux LTS 22
Component/s: Kernel
In the Linux kernel, the following vulnerability has been resolved:[EOL][EOL]of: overlay: Call of_changeset_init() early[EOL][EOL]When of_overlay_fdt_apply() fails, the changeset may be partially[EOL]applied, and the caller is still expected to call of_overlay_remove() to[EOL]clean up this partial state.[EOL][EOL]However, of_overlay_apply() calls of_resolve_phandles() before[EOL]init_overlay_changeset(). Hence if the overlay fails to apply due to an[EOL]unresolved symbol, the overlay_changeset.cset.entries list is still[EOL]uninitialized, and cleanup will crash with a NULL-pointer dereference in[EOL]overlay_removal_is_ok().[EOL][EOL]Fix this by moving the call to of_changeset_init() from[EOL]init_overlay_changeset() to of_overlay_fdt_apply(), where all other[EOL]early initialization is done.
