Lucene search

416baaa9-dc9f-4396-8d5f-8c081fb06d67CVE-2022-48748

HistoryJun 20, 2024 - 12:15 p.m.

CVE-2022-48748

2024-06-2012:15:13

CWE-400

416baaa9-dc9f-4396-8d5f-8c081fb06d67

web.nvd.nist.gov

linux kernel

net bridge

vlan

memory leak

fix

vulnerability

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

6.6 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

15.8%

JSON

In the Linux kernel, the following vulnerability has been resolved:

net: bridge: vlan: fix memory leak in __allowed_ingress

When using per-vlan state, if vlan snooping and stats are disabled,
untagged or priority-tagged ingress frame will go to check pvid state.
If the port state is forwarding and the pvid state is not
learning/forwarding, untagged or priority-tagged frame will be dropped
but skb memory is not freed.
Should free skb when __allowed_ingress returns false.

Affected configurations

Vulners

Node

linuxlinux_kernelRange5.6–5.10.96

linuxlinux_kernelRange5.11.0–5.15.19

linuxlinux_kernelRange5.16.0–5.16.5

linuxlinux_kernelRange5.17.0≥

CNA Affected

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "net/bridge/br_vlan.c"
    ],
    "versions": [
      {
        "version": "a580c76d534c",
        "lessThan": "446ff1fc37c7",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "a580c76d534c",
        "lessThan": "c5e216e880fa",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "a580c76d534c",
        "lessThan": "14be8d448fca",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "a580c76d534c",
        "lessThan": "fd20d9738395",
        "status": "affected",
        "versionType": "git"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "affected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "net/bridge/br_vlan.c"
    ],
    "versions": [
      {
        "version": "5.6",
        "status": "affected"
      },
      {
        "version": "0",
        "lessThan": "5.6",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "5.10.96",
        "lessThanOrEqual": "5.10.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "5.15.19",
        "lessThanOrEqual": "5.15.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "5.16.5",
        "lessThanOrEqual": "5.16.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "5.17",
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "versionType": "original_commit_for_fix"
      }
    ]
  }
]

References

git.kernel.org/stable/c/14be8d448fca6fe7b2a413831eedd55aef6c6511

git.kernel.org/stable/c/446ff1fc37c74093e81db40811a07b5a19f1d797

git.kernel.org/stable/c/c5e216e880fa6f2cd9d4a6541269377657163098

git.kernel.org/stable/c/fd20d9738395cf8e27d0a17eba34169699fccdff

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

6.6 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

15.8%

JSON

Related for CVE-2022-48748