CVE-2022-49048

Опубликовано: 26 фев. 2025

Источник: redhat

CVSS3: 5.5

EPSS Низкий

Описание

In the Linux kernel, the following vulnerability has been resolved: ipv6: fix panic when forwarding a pkt with no in6 dev kongweibin reported a kernel panic in ip6_forward() when input interface has no in6 dev associated. The following tc commands were used to reproduce this panic: tc qdisc del dev vxlan100 root tc qdisc add dev vxlan100 root netem corrupt 5%

Затронутые пакеты

Платформа	Пакет	Состояние
Red Hat Enterprise Linux 10	kernel	Not affected
Red Hat Enterprise Linux 6	kernel	Out of support scope
Red Hat Enterprise Linux 7	kernel	Out of support scope
Red Hat Enterprise Linux 7	kernel-rt	Out of support scope
Red Hat Enterprise Linux 8	kernel	Out of support scope
Red Hat Enterprise Linux 8	kernel-rt	Out of support scope
Red Hat Enterprise Linux 9	kernel	Affected
Red Hat Enterprise Linux 9	kernel-rt	Affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

https://bugzilla.redhat.com/show_bug.cgi?id=2347812kernel: ipv6: fix panic when forwarding a pkt with no in6 dev

EPSS

Процентиль: 16%

0.00052

Низкий

5.5 Medium

CVSS3

Связанные уязвимости

CVE-2022-49048

CVSS3: 5.5

ubuntu

12 месяцев назад

CVE-2022-49048

CVSS3: 5.5

nvd

12 месяцев назад

CVE-2022-49048

CVSS3: 5.5

debian

12 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: i ...

GHSA-hv5h-q6gh-5q7w

CVSS3: 5.5

github

4 месяца назад

EPSS

Процентиль: 16%

0.00052

Низкий

5.5 Medium

CVSS3