CVE-2022-40307

CVSS v3.1 4.7 (Medium)

EPSS 0.04 % (5^th)

Affected Products 2

Advisories 28

An issue was discovered in the Linux kernel through 5.19.8. drivers/firmware/efi/capsule-loader.c has a race condition with a resultant use-after-free.

Weaknesses

CWE-416: Use After Free

CVE Status: PUBLISHED
CNA: MITRE
Published Date: 2022-09-09 05:15:07
(2 years ago)
Updated Date: 2022-11-21 19:44:59
(22 months ago)

Affected Products

Debian

Debian Linux

Linux

Linux Kernel

Configuration #1

		CPE23	From	Up To
	Linux Kernel 5.19.8 and prior versions	cpe:2.3:o:linux:linux_kernel		<= 5.19.8

Configuration #2

		CPE23	From	Up To
	Debian Linux 10.0	cpe:2.3:o:debian:debian_linux:10.0

Configuration #3

		CPE23	From	Up To
	Debian Linux 10.0	cpe:2.3:o:debian:debian_linux:10.0
	Debian Linux 11.0	cpe:2.3:o:debian:debian_linux:11.0