2024-10-21 22:03:30 +00:00
{
"id" : "CVE-2022-49015" ,
"sourceIdentifier" : "416baaa9-dc9f-4396-8d5f-8c081fb06d67" ,
"published" : "2024-10-21T20:15:12.787" ,
2024-10-24 20:03:28 +00:00
"lastModified" : "2024-10-24T18:31:54.943" ,
"vulnStatus" : "Analyzed" ,
2024-10-21 22:03:30 +00:00
"cveTags" : [ ] ,
"descriptions" : [
{
"lang" : "en" ,
"value" : "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: hsr: Fix potential use-after-free\n\nThe skb is delivered to netif_rx() which may free it, after calling this,\ndereferencing skb may trigger use-after-free."
2024-10-23 16:03:56 +00:00
} ,
{
"lang" : "es" ,
"value" : "En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: net:hsr: Se corrige un posible use after free. El skb se entrega a netif_rx() que puede liberarlo; despu\u00e9s de llamarlo, desreferenciar skb puede desencadenar un use after free."
2024-10-21 22:03:30 +00:00
}
] ,
2024-10-24 20:03:28 +00:00
"metrics" : {
"cvssMetricV31" : [
{
"source" : "nvd@nist.gov" ,
"type" : "Primary" ,
"cvssData" : {
"version" : "3.1" ,
"vectorString" : "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" ,
"attackVector" : "LOCAL" ,
"attackComplexity" : "LOW" ,
"privilegesRequired" : "LOW" ,
"userInteraction" : "NONE" ,
"scope" : "UNCHANGED" ,
"confidentialityImpact" : "HIGH" ,
"integrityImpact" : "HIGH" ,
"availabilityImpact" : "HIGH" ,
"baseScore" : 7.8 ,
"baseSeverity" : "HIGH"
} ,
"exploitabilityScore" : 1.8 ,
"impactScore" : 5.9
}
]
} ,
"weaknesses" : [
{
"source" : "nvd@nist.gov" ,
"type" : "Primary" ,
"description" : [
{
"lang" : "en" ,
"value" : "CWE-416"
}
]
}
] ,
"configurations" : [
{
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*" ,
"versionStartIncluding" : "3.13" ,
"versionEndExcluding" : "4.9.335" ,
"matchCriteriaId" : "42B78CF7-5696-47EA-8FC2-89655FE68C51"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*" ,
"versionStartIncluding" : "4.10" ,
"versionEndExcluding" : "4.14.301" ,
"matchCriteriaId" : "0EE18A3A-1E78-44D6-9FDB-B267E4819993"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*" ,
"versionStartIncluding" : "4.15" ,
"versionEndExcluding" : "4.19.268" ,
"matchCriteriaId" : "04705C94-71FA-46AB-AF73-B551892B0EBA"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*" ,
"versionStartIncluding" : "4.20" ,
"versionEndExcluding" : "5.4.226" ,
"matchCriteriaId" : "274F5087-5805-4D03-8C74-8517300658F1"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*" ,
"versionStartIncluding" : "5.5" ,
"versionEndExcluding" : "5.10.158" ,
"matchCriteriaId" : "D0FB1AF1-0A0B-4419-B25F-C61F17380E18"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*" ,
"versionStartIncluding" : "5.11" ,
"versionEndExcluding" : "5.15.82" ,
"matchCriteriaId" : "0DC20DB6-73C1-4465-B931-117BFB8EBB02"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*" ,
"versionStartIncluding" : "5.16" ,
"versionEndExcluding" : "6.0.12" ,
"matchCriteriaId" : "D6D56E90-F3EE-413D-B3E2-B518932F0C7D"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:linux:linux_kernel:6.1:rc1:*:*:*:*:*:*" ,
"matchCriteriaId" : "E7E331DA-1FB0-4DEC-91AC-7DA69D461C11"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:linux:linux_kernel:6.1:rc2:*:*:*:*:*:*" ,
"matchCriteriaId" : "17F0B248-42CF-4AE6-A469-BB1BAE7F4705"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:linux:linux_kernel:6.1:rc3:*:*:*:*:*:*" ,
"matchCriteriaId" : "E2422816-0C14-4B5E-A1E6-A9D776E5C49B"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:linux:linux_kernel:6.1:rc4:*:*:*:*:*:*" ,
"matchCriteriaId" : "1C6E00FE-5FB9-4D20-A1A1-5A32128F9B76"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:linux:linux_kernel:6.1:rc5:*:*:*:*:*:*" ,
"matchCriteriaId" : "35B26BE4-43A6-4A36-A7F6-5B3F572D9186"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:linux:linux_kernel:6.1:rc6:*:*:*:*:*:*" ,
"matchCriteriaId" : "3FFFB0B3-930D-408A-91E2-BAE0C2715D80"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:linux:linux_kernel:6.1:rc7:*:*:*:*:*:*" ,
"matchCriteriaId" : "8535320E-A0DB-4277-800E-D0CE5BBA59E8"
}
]
}
]
}
] ,
2024-10-21 22:03:30 +00:00
"references" : [
{
"url" : "https://git.kernel.org/stable/c/4b351609af4fdbc23f79ab2b12748f4403ea9af4" ,
2024-10-24 20:03:28 +00:00
"source" : "416baaa9-dc9f-4396-8d5f-8c081fb06d67" ,
"tags" : [
"Patch"
]
2024-10-21 22:03:30 +00:00
} ,
{
"url" : "https://git.kernel.org/stable/c/53a62c5efe91665f7a41fad0f888a96f94dc59eb" ,
2024-10-24 20:03:28 +00:00
"source" : "416baaa9-dc9f-4396-8d5f-8c081fb06d67" ,
"tags" : [
"Patch"
]
2024-10-21 22:03:30 +00:00
} ,
{
"url" : "https://git.kernel.org/stable/c/7ca81a161e406834a1fdc405fc83a572bd14b8d9" ,
2024-10-24 20:03:28 +00:00
"source" : "416baaa9-dc9f-4396-8d5f-8c081fb06d67" ,
"tags" : [
"Patch"
]
2024-10-21 22:03:30 +00:00
} ,
{
"url" : "https://git.kernel.org/stable/c/7e177d32442b7ed08a9fa61b61724abc548cb248" ,
2024-10-24 20:03:28 +00:00
"source" : "416baaa9-dc9f-4396-8d5f-8c081fb06d67" ,
"tags" : [
"Patch"
]
2024-10-21 22:03:30 +00:00
} ,
{
"url" : "https://git.kernel.org/stable/c/8393ce5040803666bfa26a3a7bf41e44fab0ace9" ,
2024-10-24 20:03:28 +00:00
"source" : "416baaa9-dc9f-4396-8d5f-8c081fb06d67" ,
"tags" : [
"Patch"
]
2024-10-21 22:03:30 +00:00
} ,
{
"url" : "https://git.kernel.org/stable/c/b35d899854d5d5d58eb7d7e7c0f61afc60d3a9e9" ,
2024-10-24 20:03:28 +00:00
"source" : "416baaa9-dc9f-4396-8d5f-8c081fb06d67" ,
"tags" : [
"Patch"
]
2024-10-21 22:03:30 +00:00
} ,
{
"url" : "https://git.kernel.org/stable/c/dca370e575d9b6c983f5015e8dc035e23e219ee6" ,
2024-10-24 20:03:28 +00:00
"source" : "416baaa9-dc9f-4396-8d5f-8c081fb06d67" ,
"tags" : [
"Patch"
]
2024-10-21 22:03:30 +00:00
} ,
{
"url" : "https://git.kernel.org/stable/c/f3add2b8cf620966de3ebfa07679ca12d33ec26f" ,
2024-10-24 20:03:28 +00:00
"source" : "416baaa9-dc9f-4396-8d5f-8c081fb06d67" ,
"tags" : [
"Patch"
]
2024-10-21 22:03:30 +00:00
}
]
}
