7.1
CVE-2022-49278
- EPSS 0.25%
- Veröffentlicht 26.02.2025 07:01:04
- Zuletzt bearbeitet 22.09.2025 20:44:28
- CVE-Watchlists
- Unerledigt
remoteproc: Fix count check in rproc_coredump_write()
In the Linux kernel, the following vulnerability has been resolved: remoteproc: Fix count check in rproc_coredump_write() Check count for 0, to avoid a potential underflow. Make the check the same as the one in rproc_recovery_write().
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Linux ≫ Linux Kernel Version >= 5.9 < 5.10.110
Linux ≫ Linux Kernel Version >= 5.11 < 5.15.33
Linux ≫ Linux Kernel Version >= 5.16 < 5.16.19
Linux ≫ Linux Kernel Version >= 5.17 < 5.17.2
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.25% | 0.164 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.1 | 1.8 | 5.2 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H
|
CWE-191 Integer Underflow (Wrap or Wraparound)
The product subtracts one value from another, such that the result is less than the minimum allowable integer value, which produces a value that is not equal to the correct result.
https://git.kernel.org/stable/c/11572dad9fbadbd9269a2550f7e236b5b8c2d80c
https://git.kernel.org/stable/c/34afac3c75fa08d6fabbab4c93f0a90618afaaa6
https://git.kernel.org/stable/c/a8c3e53517985d69040a1b36a269e85f99cf0cea
https://git.kernel.org/stable/c/b97b305656a7013690e7b6e310f0e827e0bbff90
https://git.kernel.org/stable/c/f89672cc3681952f2d06314981a6b45f8b0045d1