Lucene search

416baaa9-dc9f-4396-8d5f-8c081fb06d67NVD:CVE-2022-48843

HistoryJul 16, 2024 - 1:15 p.m.

CVE-2022-48843

2024-07-1613:15:11

CWE-476

416baaa9-dc9f-4396-8d5f-8c081fb06d67

web.nvd.nist.gov

linux kernel

drm

vrr

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

EPSS

Percentile

5.1%

JSON

In the Linux kernel, the following vulnerability has been resolved:

drm/vrr: Set VRR capable prop only if it is attached to connector

VRR capable property is not attached by default to the connector
It is attached only if VRR is supported.
So if the driver tries to call drm core set prop function without
it being attached that causes NULL dereference.

Affected configurations

Nvd

Node

linuxlinux_kernelRange<5.4.186

linuxlinux_kernelRange5.5–5.10.107

linuxlinux_kernelRange5.11–5.15.30

linuxlinux_kernelRange5.16–5.16.16

VendorProductVersionCPE
linuxlinux_kernel*cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
linux	linux_kernel	*	cpe:2.3:o:linux:linux_kernel::::::::

References

git.kernel.org/stable/c/0ba557d330946c23559aaea2d51ea649fdeca98a

git.kernel.org/stable/c/3534c5c005ef99a1804ed50b8a72cdae254cabb5

git.kernel.org/stable/c/62929726ef0ec72cbbe9440c5d125d4278b99894

git.kernel.org/stable/c/85271e92ae4f13aa679acaa6cf76b3c36bcb7bab

git.kernel.org/stable/c/941e8bcd2b2ba95490738e33dfeca27168452779

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

EPSS

Percentile

5.1%

JSON

Related for NVD:CVE-2022-48843