gsd-2022-48641
Vulnerability from gsd
Modified
2024-02-26 06:00
Details
In the Linux kernel, the following vulnerability has been resolved:
netfilter: ebtables: fix memory leak when blob is malformed
The bug fix was incomplete, it "replaced" crash with a memory leak.
The old code had an assignment to "ret" embedded into the conditional,
restore this.
Aliases
{ "gsd": { "metadata": { "exploitCode": "unknown", "remediation": "unknown", "reportConfidence": "confirmed", "type": "vulnerability" }, "osvSchema": { "aliases": [ "CVE-2022-48641" ], "details": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: ebtables: fix memory leak when blob is malformed\n\nThe bug fix was incomplete, it \"replaced\" crash with a memory leak.\nThe old code had an assignment to \"ret\" embedded into the conditional,\nrestore this.", "id": "GSD-2022-48641", "modified": "2024-02-26T06:00:31.528970Z", "schema_version": "1.4.0" } }, "namespaces": { "cve.org": { "CVE_data_meta": { "ASSIGNER": "cve@kernel.org", "ID": "CVE-2022-48641", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "Linux", "version": { "version_data": [ { "version_affected": "\u003c", "version_name": "afd01382594d", "version_value": "754e8b74281d" }, { "version_affected": "\u003c", "version_name": "358765beb836", "version_value": "1e98318af2f1" }, { "version_affected": "\u003c", "version_name": "160c4eb47db0", "version_value": "11ebf32fde46" }, { "version_affected": "\u003c", "version_name": "624c30521233", "version_value": "ebd97dbe3c55" }, { "version_affected": "\u003c", "version_name": "1b2c5428f773", "version_value": "d5917b7af7ca" }, { "version_affected": "\u003c", "version_name": "e53cfa017bf4", "version_value": "38cf372b17f0" }, { "version_affected": "\u003c", "version_name": "7997eff82828", "version_value": "62ce44c4fff9" }, { "version_affected": "\u003c", "version_name": "4.14.292", "version_value": "4.14.295" }, { "version_affected": "\u003c", "version_name": "4.19.257", "version_value": "4.19.260" }, { "version_affected": "\u003c", "version_name": "5.4.212", "version_value": "5.4.215" }, { "version_affected": "\u003c", "version_name": "5.10.140", "version_value": "5.10.146" }, { "version_affected": "\u003c", "version_name": "5.15.64", "version_value": "5.15.71" }, { "version_affected": "\u003c", "version_name": "5.19.6", "version_value": "5.19.12" } ] } } ] }, "vendor_name": "Linux" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: ebtables: fix memory leak when blob is malformed\n\nThe bug fix was incomplete, it \"replaced\" crash with a memory leak.\nThe old code had an assignment to \"ret\" embedded into the conditional,\nrestore this." } ] }, "generator": { "engine": "bippy-d175d3acf727" }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "n/a" } ] } ] }, "references": { "reference_data": [ { "name": "https://git.kernel.org/stable/c/754e8b74281dd54a324698803483f47cf3355ae1", "refsource": "MISC", "url": "https://git.kernel.org/stable/c/754e8b74281dd54a324698803483f47cf3355ae1" }, { "name": "https://git.kernel.org/stable/c/1e98318af2f163eadaff815abcef38d27ca92c1e", "refsource": "MISC", "url": "https://git.kernel.org/stable/c/1e98318af2f163eadaff815abcef38d27ca92c1e" }, { "name": "https://git.kernel.org/stable/c/11ebf32fde46572b0aaf3c2bdd97d923ef5a03ab", "refsource": "MISC", "url": "https://git.kernel.org/stable/c/11ebf32fde46572b0aaf3c2bdd97d923ef5a03ab" }, { "name": "https://git.kernel.org/stable/c/ebd97dbe3c55d68346b9c5fb00634a7f5b10bbee", "refsource": "MISC", "url": "https://git.kernel.org/stable/c/ebd97dbe3c55d68346b9c5fb00634a7f5b10bbee" }, { "name": "https://git.kernel.org/stable/c/d5917b7af7cae0e2804f9d127a03268035098b7f", "refsource": "MISC", "url": "https://git.kernel.org/stable/c/d5917b7af7cae0e2804f9d127a03268035098b7f" }, { "name": "https://git.kernel.org/stable/c/38cf372b17f0a5f35c1b716a100532d539f0eb33", "refsource": "MISC", "url": "https://git.kernel.org/stable/c/38cf372b17f0a5f35c1b716a100532d539f0eb33" }, { "name": "https://git.kernel.org/stable/c/62ce44c4fff947eebdf10bb582267e686e6835c9", "refsource": "MISC", "url": "https://git.kernel.org/stable/c/62ce44c4fff947eebdf10bb582267e686e6835c9" } ] } }, "nvd.nist.gov": { "cve": { "descriptions": [ { "lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: ebtables: fix memory leak when blob is malformed\n\nThe bug fix was incomplete, it \"replaced\" crash with a memory leak.\nThe old code had an assignment to \"ret\" embedded into the conditional,\nrestore this." } ], "id": "CVE-2022-48641", "lastModified": "2024-04-28T13:15:06.950", "metrics": {}, "published": "2024-04-28T13:15:06.950", "references": [ { "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "url": "https://git.kernel.org/stable/c/11ebf32fde46572b0aaf3c2bdd97d923ef5a03ab" }, { "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "url": "https://git.kernel.org/stable/c/1e98318af2f163eadaff815abcef38d27ca92c1e" }, { "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "url": "https://git.kernel.org/stable/c/38cf372b17f0a5f35c1b716a100532d539f0eb33" }, { "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "url": "https://git.kernel.org/stable/c/62ce44c4fff947eebdf10bb582267e686e6835c9" }, { "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "url": "https://git.kernel.org/stable/c/754e8b74281dd54a324698803483f47cf3355ae1" }, { "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "url": "https://git.kernel.org/stable/c/d5917b7af7cae0e2804f9d127a03268035098b7f" }, { "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "url": "https://git.kernel.org/stable/c/ebd97dbe3c55d68346b9c5fb00634a7f5b10bbee" } ], "sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "vulnStatus": "Received" } } } }
Loading...
Loading...
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.