CVE-2022-47940

Опубликовано: 23 дек. 2022

Источник: debian

EPSS Низкий

Описание

An issue was discovered in ksmbd in the Linux kernel 5.15 through 5.18 before 5.18.18. fs/ksmbd/smb2pdu.c lacks length validation in the non-padding case in smb2_write.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
linux	fixed	5.19.6-1		package
linux	not-affected		bullseye	package
linux	not-affected		buster	package

Примечания

https://git.kernel.org/linus/158a66b245739e15858de42c0ba60fcf3de9b8e6 (5.19-rc1)

EPSS

Процентиль: 43%

0.00208

Низкий

Связанные уязвимости

CVE-2022-47940

CVSS3: 8.1

ubuntu

около 3 лет назад

An issue was discovered in ksmbd in the Linux kernel 5.15 through 5.18 before 5.18.18. fs/ksmbd/smb2pdu.c lacks length validation in the non-padding case in smb2_write.

CVE-2022-47940

CVSS3: 8.1

redhat

около 3 лет назад

An issue was discovered in ksmbd in the Linux kernel 5.15 through 5.18 before 5.18.18. fs/ksmbd/smb2pdu.c lacks length validation in the non-padding case in smb2_write.

CVE-2022-47940

CVSS3: 8.1

nvd

около 3 лет назад

An issue was discovered in ksmbd in the Linux kernel 5.15 through 5.18 before 5.18.18. fs/ksmbd/smb2pdu.c lacks length validation in the non-padding case in smb2_write.

CVE-2022-47940

CVSS3: 8.1

msrc

около 3 лет назад

Описание отсутствует

GHSA-7q73-76jf-54wg

CVSS3: 8.1

github

около 3 лет назад

An issue was discovered in ksmbd in the Linux kernel before 5.18.18. fs/ksmbd/smb2pdu.c lacks length validation in the non-padding case in smb2_write.

EPSS

Процентиль: 43%

0.00208

Низкий