7.8
CVE-2022-48873
- EPSS 0.24%
- Veröffentlicht 21.08.2024 07:15:04
- Zuletzt bearbeitet 06.09.2024 14:44:16
- CVE-Watchlists
- Unerledigt
misc: fastrpc: Don't remove map on creater_process and device_release
In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: Don't remove map on creater_process and device_release Do not remove the map from the list on error path in fastrpc_init_create_process, instead call fastrpc_map_put, to avoid use-after-free. Do not remove it on fastrpc_device_release either, call fastrpc_map_put instead. The fastrpc_free_map is the only proper place to remove the map. This is called only after the reference count is 0.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Linux ≫ Linux Kernel Version >= 5.2 < 5.4.230
Linux ≫ Linux Kernel Version >= 5.5 < 5.10.165
Linux ≫ Linux Kernel Version >= 5.11 < 5.15.90
Linux ≫ Linux Kernel Version >= 5.16 < 6.1.8
Linux ≫ Linux Kernel Version6.2 Updaterc1
Linux ≫ Linux Kernel Version6.2 Updaterc2
Linux ≫ Linux Kernel Version6.2 Updaterc3
Linux ≫ Linux Kernel Version6.2 Updaterc4
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.24% | 0.15 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.8 | 1.8 | 5.9 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
|
CWE-416 Use After Free
The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.
https://git.kernel.org/stable/c/193cd853145b63e670bd73740250983af1475330
https://git.kernel.org/stable/c/1b7b7bb400dd13dcb03fc6e591bb7ca4664bbec8
https://git.kernel.org/stable/c/35ddd482345c43d9eec1f3406c0f20a95ed4054b
https://git.kernel.org/stable/c/4b5c44e924a571d0ad07054de549624fbc04e4d7
https://git.kernel.org/stable/c/5bb96c8f9268e2fdb0e5321cbc358ee5941efc15