CVE-2022-48899

EPSS 0.01%
Veröffentlicht 21.08.2024 07:15:05
Zuletzt bearbeitet 11.09.2024 16:22:26
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

drm/virtio: Fix GEM handle creation UAF

In the Linux kernel, the following vulnerability has been resolved:

drm/virtio: Fix GEM handle creation UAF

Userspace can guess the handle value and try to race GEM object creation
with handle close, resulting in a use-after-free if we dereference the
object after dropping the handle's reference.  For that reason, dropping
the handle's reference must be done *after* we are done dereferencing
the object.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 9

NVD 8 VulnDex Vulnerability Enrichment 8

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Linux ≫ Linux Kernel Version >= 4.4 < 4.19.270

Linux ≫ Linux Kernel Version >= 4.20 < 5.4.229

Linux ≫ Linux Kernel Version >= 5.5 < 5.10.164

Linux ≫ Linux Kernel Version >= 5.11 < 5.15.89

Linux ≫ Linux Kernel Version >= 5.16 < 6.1.7

Linux ≫ Linux Kernel Version6.2 Updaterc1

Linux ≫ Linux Kernel Version6.2 Updaterc2

Linux ≫ Linux Kernel Version6.2 Updaterc3

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.01%	0.013

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	4.7	1	3.6	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

CWE-416 Use After Free

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

https://git.kernel.org/stable/c/011ecdbcd520c90c344b872ca6b4821f7783b2f8

Patch

https://git.kernel.org/stable/c/19ec87d06acfab2313ee82b2a689bf0c154e57ea

Patch

https://git.kernel.org/stable/c/52531258318ed59a2dc5a43df2eaf0eb1d65438e

Patch

https://git.kernel.org/stable/c/68bcd063857075d2f9edfed6024387ac377923e2

Patch

https://git.kernel.org/stable/c/adc48e5e408afbb01d261bd303fd9fbbbaa3e317

Patch

https://git.kernel.org/stable/c/d01d6d2b06c0d8390adf8f3ba08aa60b5642ef73

Patch

https://nvd.nist.gov/vuln/detail/CVE-2022-48899

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2022-48899

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2022-48899

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2022-48899