CVE-2022-48804

CVSS v3.1 5.5 (Medium)

EPSS 0.04 % (5^th)

Affected Products 1

Advisories 9

NVD Status Analyzed

In the Linux kernel, the following vulnerability has been resolved:

vt_ioctl: fix array_index_nospec in vt_setactivate

array_index_nospec ensures that an out-of-bounds value is set to zero
on the transient path. Decreasing the value by one afterwards causes
a transient integer underflow. vsa.console should be decreased first
and then sanitized with array_index_nospec.

Kasper Acknowledgements: Jakob Koschel, Brian Johannesmeyer, Kaveh
Razavi, Herbert Bos, Cristiano Giuffrida from the VUSec group at VU
Amsterdam.

Weaknesses

CWE-191: Integer Underflow (Wrap or Wraparound)

CVE Status: PUBLISHED
NVD Status: Analyzed
CNA: kernel.org
Published Date: 2024-07-16 12:15:04
(2 months ago)
Updated Date: 2024-09-09 18:19:25
(9 days ago)

Affected Products

Linux

Linux Kernel

Configuration #1

	CPE23	From	Up To
Linux Kernel prior 4.9.302 version	cpe:2.3:o:linux:linux_kernel		< 4.9.302
Linux Kernel from 4.10 version and prior 4.14.267 version	cpe:2.3:o:linux:linux_kernel	>= 4.10	< 4.14.267
Linux Kernel from 4.15 version and prior 4.19.320 version	cpe:2.3:o:linux:linux_kernel	>= 4.15	< 4.19.320
Linux Kernel from 4.20 version and prior 5.4.180 version	cpe:2.3:o:linux:linux_kernel	>= 4.20	< 5.4.180
Linux Kernel from 5.5 version and prior 5.10.101 version	cpe:2.3:o:linux:linux_kernel	>= 5.5	< 5.10.101
Linux Kernel from 5.11 version and prior 5.15.24 version	cpe:2.3:o:linux:linux_kernel	>= 5.11	< 5.15.24
Linux Kernel from 5.16 version and prior 5.16.10 version	cpe:2.3:o:linux:linux_kernel	>= 5.16	< 5.16.10
Linux Kernel 5.17 Rc1	cpe:2.3:o:linux:linux_kernel:5.17:rc1
Linux Kernel 5.17 Rc2	cpe:2.3:o:linux:linux_kernel:5.17:rc2
Linux Kernel 5.17 Rc3	cpe:2.3:o:linux:linux_kernel:5.17:rc3