CVE-2022-4382

Опубликовано: 10 янв. 2023

Источник: nvd

CVSS3: 6.4

EPSS Низкий

Описание

A use-after-free flaw caused by a race among the superblock operations in the gadgetfs Linux driver was found. It could be triggered by yanking out a device that is running the gadgetfs side.

Ссылки

https://www.openwall.com/lists/oss-security/2022/12/14/5
Exploit
Mailing List
Patch
Third Party Advisory
https://www.openwall.com/lists/oss-security/2022/12/14/5
Exploit
Mailing List
Patch
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*

EPSS

Процентиль: 8%

0.0003

Низкий

6.4 Medium

CVSS3

Дефекты

CWE-416

Связанные уязвимости

CVE-2022-4382

CVSS3: 6.4

ubuntu

около 3 лет назад

A use-after-free flaw caused by a race among the superblock operations in the gadgetfs Linux driver was found. It could be triggered by yanking out a device that is running the gadgetfs side.

CVE-2022-4382

CVSS3: 4.2

redhat

около 3 лет назад

A use-after-free flaw caused by a race among the superblock operations in the gadgetfs Linux driver was found. It could be triggered by yanking out a device that is running the gadgetfs side.

CVE-2022-4382

CVSS3: 6.4

debian

около 3 лет назад

A use-after-free flaw caused by a race among the superblock operations ...

GHSA-xfq3-69mc-84pr

CVSS3: 6.4

github

около 3 лет назад

A use-after-free flaw caused by a race among the superblock operations in the gadgetfs Linux driver was found. It could be triggered by yanking out a device that is running the gadgetfs side.

BDU:2022-07341

CVSS3: 7.4

fstec

около 3 лет назад

Уязвимость драйвера USB ядра операционной системы Linux, позволяющая нарушителю вызвать отказ в обслуживании или повысить свои привилегии

EPSS

Процентиль: 8%

0.0003

Низкий

6.4 Medium

CVSS3

Дефекты

CWE-416