CVE-2022-3105

Опубликовано: 13 дек. 2022

Источник: redhat

CVSS3: 5.5

Описание

An issue was discovered in the Linux kernel through 5.16-rc6. uapi_finalize in drivers/infiniband/core/uverbs_uapi.c lacks check of kmalloc_array().

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat Enterprise Linux 6	kernel	Out of support scope
Red Hat Enterprise Linux 7	kernel	Out of support scope
Red Hat Enterprise Linux 7	kernel-rt	Out of support scope
Red Hat Enterprise Linux 9	kernel	Not affected
Red Hat Enterprise Linux 9	kernel-rt	Not affected
Red Hat Enterprise Linux 8	kernel-rt	Fixed	RHSA-2022:1975	10.05.2022
Red Hat Enterprise Linux 8	kernel	Fixed	RHSA-2022:1988	10.05.2022

Показывать по

Статус:

Low

Дефект:

CWE-476

https://bugzilla.redhat.com/show_bug.cgi?id=2153067kernel: RDMA/uverbs: NULL pointer dereference in uapi_finalize()

5.5 Medium

CVSS3

CVE-2022-3105

CVSS3: 5.5

ubuntu

около 3 лет назад

An issue was discovered in the Linux kernel through 5.16-rc6. uapi_finalize in drivers/infiniband/core/uverbs_uapi.c lacks check of kmalloc_array().

CVE-2022-3105

CVSS3: 5.5

nvd

около 3 лет назад

An issue was discovered in the Linux kernel through 5.16-rc6. uapi_finalize in drivers/infiniband/core/uverbs_uapi.c lacks check of kmalloc_array().

CVE-2022-3105

CVSS3: 5.5

msrc

около 3 лет назад

An issue was discovered in the Linux kernel through 5.16-rc6. uapi_finalize in drivers/infiniband/core/uverbs_uapi.c lacks check of kmalloc_array().

CVE-2022-3105

CVSS3: 5.5

debian

около 3 лет назад

An issue was discovered in the Linux kernel through 5.16-rc6. uapi_fin ...

GHSA-wgp6-2g3r-9p4m

CVSS3: 5.5

github

около 3 лет назад

An issue was discovered in the Linux kernel through 5.16-rc6. uapi_finalize in drivers/infiniband/core/uverbs_uapi.c lacks check of kmalloc_array().

5.5 Medium

CVSS3