Lucene search

GoogleOSV:CVE-2022-48778

HistoryJul 16, 2024 - 12:15 p.m.

CVE-2022-48778

2024-07-1612:15:03

Google

osv.dev

linux kernel

mtd

rawnand

gpmi

vulnerability

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

7.3

Confidence

High

EPSS

Percentile

5.0%

JSON

In the Linux kernel, the following vulnerability has been resolved:

mtd: rawnand: gpmi: don’t leak PM reference in error path

If gpmi_nfc_apply_timings() fails, the PM runtime usage counter must be
dropped.

References

git.kernel.org/stable/c/4a7ec50298b1127c5024a750c969ea0794899545

git.kernel.org/stable/c/4cd3281a910a5adf73b2a0a82241dd67844d0b25

git.kernel.org/stable/c/58d3111eafce9e4398654b07f0b1dac27f26ee5b

git.kernel.org/stable/c/9161f365c91614e5a3f5c6dcc44c3b1b33bc59c0

git.kernel.org/stable/c/a4eeeaca50199e3f19eb13ac3b7e0bbb93e22de4

security-tracker.debian.org/tracker/CVE-2022-48778

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

7.3

Confidence

High

EPSS

Percentile

5.0%

JSON

Related for OSV:CVE-2022-48778