CVE-2022-26966

Опубликовано: 13 мар. 2022

Источник: redhat

CVSS3: 5.5

EPSS Низкий

Описание

An issue was discovered in the Linux kernel before 5.16.12. drivers/net/usb/sr9700.c allows attackers to obtain sensitive information from heap memory via crafted frame lengths from a device.

Отчет

There was no shipped kernel version that was seen affected by this problem. These files are not built in our source code.

Затронутые пакеты

Платформа	Пакет	Состояние
Red Hat Enterprise Linux 6	kernel	Not affected
Red Hat Enterprise Linux 7	kernel	Not affected
Red Hat Enterprise Linux 7	kernel-rt	Not affected
Red Hat Enterprise Linux 8	kernel	Not affected
Red Hat Enterprise Linux 8	kernel-rt	Not affected
Red Hat Enterprise Linux 9	kernel	Will not fix
Red Hat Enterprise Linux 9	kernel-rt	Will not fix

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

Дефект:

CWE-200->CWE-244

https://bugzilla.redhat.com/show_bug.cgi?id=2063718kernel: heap memory leak in drivers/net/usb/sr9700.c

EPSS

Процентиль: 5%

0.00025

Низкий

5.5 Medium

CVSS3

Связанные уязвимости

CVE-2022-26966

CVSS3: 5.5

ubuntu

больше 3 лет назад

An issue was discovered in the Linux kernel before 5.16.12. drivers/net/usb/sr9700.c allows attackers to obtain sensitive information from heap memory via crafted frame lengths from a device.

CVE-2022-26966

CVSS3: 5.5

nvd

больше 3 лет назад

An issue was discovered in the Linux kernel before 5.16.12. drivers/net/usb/sr9700.c allows attackers to obtain sensitive information from heap memory via crafted frame lengths from a device.

CVE-2022-26966

CVSS3: 5.5

msrc

больше 3 лет назад

Описание отсутствует

CVE-2022-26966

CVSS3: 5.5

debian

больше 3 лет назад

An issue was discovered in the Linux kernel before 5.16.12. drivers/ne ...

GHSA-795h-f42g-ffc6

CVSS3: 5.5

github

больше 3 лет назад

An issue was discovered in the Linux kernel before 5.16.12. drivers/net/usb/sr9700.c allows attackers to obtain sensitive information from heap memory via crafted frame lengths from a device.

EPSS

Процентиль: 5%

0.00025

Низкий

5.5 Medium

CVSS3