CVE-2022-48747
CVSS v3.1
7.5 (High)
EPSS
0.04 % (16th)
Advisories
12
NVD Status
Awaiting Analysis
In the Linux kernel, the following vulnerability has been resolved:
block: Fix wrong offset in bio_truncate()
bio_truncate() clears the buffer outside of last block of bdev, however
current bio_truncate() is using the wrong offset of page. So it can
return the uninitialized data.
This happened when both of truncated/corrupted FS and userspace (via
bdev) are trying to read the last of bdev.
Weaknesses
- CWE-908
- Use of Uninitialized Resource
- CVE Status
- PUBLISHED
- NVD Status
- Awaiting Analysis
- CNA
- kernel.org
- Published Date
-
2024-06-20 12:15:12
(2 months ago) - Updated Date
-
2024-07-03 01:39:13
(2 months ago)
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...