7.8
CVE-2022-49114
- EPSS 0.28%
- Veröffentlicht 26.02.2025 07:00:48
- Zuletzt bearbeitet 25.03.2025 16:19:46
- Quelle 416baaa9-dc9f-4396-8d5f-8c081f
- CVE-Watchlists
- Unerledigt
scsi: libfc: Fix use after free in fc_exch_abts_resp()
In the Linux kernel, the following vulnerability has been resolved: scsi: libfc: Fix use after free in fc_exch_abts_resp() fc_exch_release(ep) will decrease the ep's reference count. When the reference count reaches zero, it is freed. But ep is still used in the following code, which will lead to a use after free. Return after the fc_exch_release() call to avoid use after free.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Linux ≫ Linux Kernel Version < 4.9.311
Linux ≫ Linux Kernel Version >= 4.10 < 4.14.276
Linux ≫ Linux Kernel Version >= 4.15 < 4.19.238
Linux ≫ Linux Kernel Version >= 4.20 < 5.4.189
Linux ≫ Linux Kernel Version >= 5.5 < 5.10.111
Linux ≫ Linux Kernel Version >= 5.11 < 5.15.34
Linux ≫ Linux Kernel Version >= 5.16 < 5.16.20
Linux ≫ Linux Kernel Version >= 5.17 < 5.17.3
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.28% | 0.202 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| 134c704f-9b21-4f2e-91b3-4a467353bcc0 | 7.8 | 1.8 | 5.9 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
|
CWE-416 Use After Free
The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.
https://git.kernel.org/stable/c/1d7effe5fff9d28e45e18ac3a564067c7ddfe898
https://git.kernel.org/stable/c/271add11994ba1a334859069367e04d2be2ebdd4
https://git.kernel.org/stable/c/412dd8299b02e4410fe77b8396953c1a8dde183a
https://git.kernel.org/stable/c/499d198494e77b6533251b9b909baf5c101129cb
https://git.kernel.org/stable/c/4a131d4ea8b581ac9b01d3a72754db4848be3232
https://git.kernel.org/stable/c/5cf2ce8967b0d98c8cfa4dc42ef4fcf080f5c836
https://git.kernel.org/stable/c/6044ad64f41c87382cfeeca281573d1886d80cbe
https://git.kernel.org/stable/c/87909291762d08fdb60d19069d7a89b5b308d0ef
https://git.kernel.org/stable/c/f581df412bc45c95176e3c808ee2839c05b2ab0c