CVE-2022-48423

Опубликовано: 18 мар. 2023

Источник: redhat

CVSS3: 7

EPSS Низкий

Описание

In the Linux kernel before 6.1.3, fs/ntfs3/record.c does not validate resident attribute names. An out-of-bounds write may occur.

Отчет

Red Hat Enterprise Linux is not affected by this flaw as it does not include support for the NTFS3 file system driver.

Затронутые пакеты

Платформа	Пакет	Состояние
Red Hat Enterprise Linux 6	kernel	Not affected
Red Hat Enterprise Linux 7	kernel	Not affected
Red Hat Enterprise Linux 7	kernel-rt	Not affected
Red Hat Enterprise Linux 8	kernel	Not affected
Red Hat Enterprise Linux 8	kernel-rt	Not affected
Red Hat Enterprise Linux 9	kernel	Not affected
Red Hat Enterprise Linux 9	kernel-rt	Not affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

Дефект:

CWE-787

https://bugzilla.redhat.com/show_bug.cgi?id=2179832kernel: ntfs3: out-of-bounds write in mi_enum_attr()

EPSS

Процентиль: 2%

0.00015

Низкий

7 High

CVSS3

Связанные уязвимости

CVE-2022-48423

CVSS3: 7.8

ubuntu

больше 2 лет назад

In the Linux kernel before 6.1.3, fs/ntfs3/record.c does not validate resident attribute names. An out-of-bounds write may occur.

CVE-2022-48423

CVSS3: 7.8

nvd

больше 2 лет назад

In the Linux kernel before 6.1.3, fs/ntfs3/record.c does not validate resident attribute names. An out-of-bounds write may occur.

CVE-2022-48423

CVSS3: 7.8

msrc

около 2 лет назад

Описание отсутствует

CVE-2022-48423

CVSS3: 7.8

debian

больше 2 лет назад

In the Linux kernel before 6.1.3, fs/ntfs3/record.c does not validate ...

GHSA-v3fg-qxxf-34w3

CVSS3: 9.8

github

больше 2 лет назад

In the Linux kernel before 6.1.3, fs/ntfs3/record.c does not validate resident attribute names. An out-of-bounds write may occur.

EPSS

Процентиль: 2%

0.00015

Низкий

7 High

CVSS3