CVE-2022-3104

Опубликовано: 14 дек. 2022

Источник: nvd

CVSS3: 5.5

EPSS Низкий

Описание

An issue was discovered in the Linux kernel through 5.16-rc6. lkdtm_ARRAY_BOUNDS in drivers/misc/lkdtm/bugs.c lacks check of the return value of kmalloc() and will cause the null pointer dereference.

Ссылки

https://bugzilla.redhat.com/show_bug.cgi?id=2153062
Issue Tracking
Third Party Advisory
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?h=v5.19-rc2&id=4a9800c81d2f34afb66b4b42e0330ae8298019a2
Patch
Vendor Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=2153062
Issue Tracking
Third Party Advisory
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?h=v5.19-rc2&id=4a9800c81d2f34afb66b4b42e0330ae8298019a2
Patch
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

Версия до 5.16.0 (исключая)

cpe:2.3:o:linux:linux_kernel:5.16.0:-:*:*:*:*:*:*

cpe:2.3:o:linux:linux_kernel:5.16.0:rc1:*:*:*:*:*:*

cpe:2.3:o:linux:linux_kernel:5.16.0:rc2:*:*:*:*:*:*

cpe:2.3:o:linux:linux_kernel:5.16.0:rc3:*:*:*:*:*:*

cpe:2.3:o:linux:linux_kernel:5.16.0:rc4:*:*:*:*:*:*

cpe:2.3:o:linux:linux_kernel:5.16.0:rc5:*:*:*:*:*:*

cpe:2.3:o:linux:linux_kernel:5.16.0:rc6:*:*:*:*:*:*

EPSS

Процентиль: 22%

0.00072

Низкий

5.5 Medium

CVSS3

Дефекты

CWE-476

Связанные уязвимости

CVE-2022-3104

CVSS3: 5.5

ubuntu

около 3 лет назад

An issue was discovered in the Linux kernel through 5.16-rc6. lkdtm_ARRAY_BOUNDS in drivers/misc/lkdtm/bugs.c lacks check of the return value of kmalloc() and will cause the null pointer dereference.

CVE-2022-3104

CVSS3: 5.5

redhat

около 3 лет назад

An issue was discovered in the Linux kernel through 5.16-rc6. lkdtm_ARRAY_BOUNDS in drivers/misc/lkdtm/bugs.c lacks check of the return value of kmalloc() and will cause the null pointer dereference.

CVE-2022-3104

CVSS3: 5.5

msrc

около 3 лет назад

An issue was discovered in the Linux kernel through 5.16-rc6. lkdtm_ARRAY_BOUNDS in drivers/misc/lkdtm/bugs.c lacks check of the return value of kmalloc() and will cause the null pointer dereference.

CVE-2022-3104

CVSS3: 5.5

debian

около 3 лет назад

An issue was discovered in the Linux kernel through 5.16-rc6. lkdtm_AR ...

GHSA-xpp2-rw22-gf34

CVSS3: 5.5

github

около 3 лет назад

An issue was discovered in the Linux kernel through 5.16-rc6. lkdtm_ARRAY_BOUNDS in drivers/misc/lkdtm/bugs.c lacks check of the return value of kmalloc() and will cause the null pointer dereference.

EPSS

Процентиль: 22%

0.00072

Низкий

5.5 Medium

CVSS3

Дефекты

CWE-476