CVE-2022-49479

EPSS 0.03%
Veröffentlicht 26.02.2025 07:01:24
Zuletzt bearbeitet 24.03.2025 19:59:14
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

In the Linux kernel, the following vulnerability has been resolved:

mt76: fix tx status related use-after-free race on station removal

There is a small race window where ongoing tx activity can lead to a skb
getting added to the status tracking idr after that idr has already been
cleaned up, which will keep the wcid linked in the status poll list.
Fix this by only adding status skbs if the wcid pointer is still assigned
in dev->wcid, which gets cleared early by mt76_sta_pre_rcu_remove

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 6

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Linux ≫ Linux Kernel Version >= 5.16 < 5.17.14

Linux ≫ Linux Kernel Version >= 5.18 < 5.18.3

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.03%	0.094

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
134c704f-9b21-4f2e-91b3-4a467353bcc0	7.8	1.8	5.9	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE-416 Use After Free

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

https://git.kernel.org/stable/c/ddd426d72aca4054045a9bd3b80a4ce1d398f11f

Patch

https://git.kernel.org/stable/c/ef7f9f894cfd0b2e471206409a529af4a26ddd55

Patch

https://git.kernel.org/stable/c/fcfe1b5e162bf473c1d47760962cec8523c00466

Patch

https://nvd.nist.gov/vuln/detail/CVE-2022-49479

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2022-49479

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2022-49479

EUVD