CVE-2022-48641

2024-04-2813:15:06

Linux

web.nvd.nist.gov

netfilter

ebtables

memory leak

bug fix

linux kernel

cve-2022-48641

AI Score

6.7

Confidence

Low

EPSS

Percentile

10.3%

JSON

In the Linux kernel, the following vulnerability has been resolved:

netfilter: ebtables: fix memory leak when blob is malformed

The bug fix was incomplete, it “replaced” crash with a memory leak.
The old code had an assignment to “ret” embedded into the conditional,
restore this.

Affected configurations

Vulners

Node

linuxlinux_kernelRange4.14.292–4.14.295

linuxlinux_kernelRange4.19.257–4.19.260

linuxlinux_kernelRange5.4.212–5.4.215

linuxlinux_kernelRange5.10.140–5.10.146

linuxlinux_kernelRange5.15.64–5.15.71

linuxlinux_kernelRange5.19.6–5.19.12

VendorProductVersionCPE
linuxlinux_kernel*cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
linux	linux_kernel	*	cpe:2.3:o:linux:linux_kernel::::::::

CNA Affected

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "net/bridge/netfilter/ebtables.c"
    ],
    "versions": [
      {
        "version": "afd01382594d",
        "lessThan": "754e8b74281d",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "358765beb836",
        "lessThan": "1e98318af2f1",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "160c4eb47db0",
        "lessThan": "11ebf32fde46",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "624c30521233",
        "lessThan": "ebd97dbe3c55",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "1b2c5428f773",
        "lessThan": "d5917b7af7ca",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "e53cfa017bf4",
        "lessThan": "38cf372b17f0",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "7997eff82828",
        "lessThan": "62ce44c4fff9",
        "status": "affected",
        "versionType": "git"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "net/bridge/netfilter/ebtables.c"
    ],
    "versions": [
      {
        "version": "4.14.292",
        "lessThan": "4.14.295",
        "status": "affected",
        "versionType": "custom"
      },
      {
        "version": "4.19.257",
        "lessThan": "4.19.260",
        "status": "affected",
        "versionType": "custom"
      },
      {
        "version": "5.4.212",
        "lessThan": "5.4.215",
        "status": "affected",
        "versionType": "custom"
      },
      {
        "version": "5.10.140",
        "lessThan": "5.10.146",
        "status": "affected",
        "versionType": "custom"
      },
      {
        "version": "5.15.64",
        "lessThan": "5.15.71",
        "status": "affected",
        "versionType": "custom"
      },
      {
        "version": "5.19.6",
        "lessThan": "5.19.12",
        "status": "affected",
        "versionType": "custom"
      }
    ]
  }
]