Lucene search
Ubuntu.comUB:CVE-2022-45884HistoryNov 25, 2022 - 12:00 a.m.
CVE-2022-45884
2022-11-2500:00:00
ubuntu.com
ubuntu.com
12
linux kernel
dvb-core
use-after-free
dvb_register_device
vulnerability
dvb device
7 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
0.0004 Low
EPSS
Percentile
5.1%
An issue was discovered in the Linux kernel through 6.0.9.
drivers/media/dvb-core/dvbdev.c has a use-after-free, related to
dvb_register_device dynamically allocating fops.
Notes
| Author | Note |
|---|---|
| sbeattie | unfixed as of 2023.01.31 exploiting this vulnerability requires disconnecting a DVB device, which is why this has been prioritized as low. |
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 20.04 | noarch | linux | < any | UNKNOWN |
| ubuntu | 22.04 | noarch | linux | < any | UNKNOWN |
| ubuntu | 23.10 | noarch | linux | < any | UNKNOWN |
| ubuntu | 24.04 | noarch | linux | < any | UNKNOWN |
| ubuntu | 20.04 | noarch | linux-aws | < any | UNKNOWN |
| ubuntu | 22.04 | noarch | linux-aws | < any | UNKNOWN |
| ubuntu | 23.10 | noarch | linux-aws | < any | UNKNOWN |
| ubuntu | 24.04 | noarch | linux-aws | < any | UNKNOWN |
| ubuntu | 20.04 | noarch | linux-aws-5.15 | < any | UNKNOWN |
| ubuntu | 22.04 | noarch | linux-aws-6.5 | < any | UNKNOWN |
Related
cve
cve
CVE-2022-45884
2022-11-25 04:15:09
redhatcve
redhatcve
CVE-2022-45884
2022-11-25 18:02:10
cbl_mariner
cbl_mariner
CVE-2022-45884 affecting package kernel 5.10.185.1-1
2023-08-15 16:37:27
CVE-2022-45884 affecting package kernel for versions less than 5.15.122.1-2
2023-08-10 16:37:57
prion
prion
Double free
2022-11-25 04:15:00
nvd
nvd
CVE-2022-45884
2022-11-25 04:15:09
cvelist
cvelist
CVE-2022-45884
2022-11-25 00:00:00
osv
osv
CVE-2022-45884
2022-11-25 04:15:09
Important: kernel security and bug fix update
2023-12-06 23:16:24
Important: kernel security and bug fix update
2023-11-28 00:00:00
debiancve
debiancve
CVE-2022-45884
2022-11-25 04:15:09
nessus
nessus
RHEL 8 : kernel (RHSA-2023:7398)
2023-11-21 00:00:00
AlmaLinux 8 : kernel (ALSA-2023:7549)
2023-12-03 00:00:00
Rocky Linux 8 : kernel (RLSA-2023:7549)
2023-12-06 00:00:00
redhat
redhat
(RHSA-2023:7398) Important: kernel security and bug fix update
2023-11-21 09:47:13
(RHSA-2023:7548) Important: kernel-rt security update
2023-11-28 14:49:12
(RHSA-2023:7549) Important: kernel security and bug fix update
2023-11-28 14:51:21
rocky
rocky
kernel-rt security update
2023-12-06 23:16:07
kernel security and bug fix update
2023-12-06 23:18:20
kernel security and bug fix update
2023-12-06 23:16:24
almalinux
almalinux
Important: kernel security and bug fix update
2023-11-28 00:00:00
oraclelinux
oraclelinux
kernel security and bug fix update
2023-12-01 00:00:00
Unbreakable Enterprise kernel security update
2023-03-17 00:00:00
Unbreakable Enterprise kernel security update
2023-03-21 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2023:2507-1)
2023-06-15 00:00:00
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2023-3275)
2023-12-12 00:00:00
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2023-3247)
2023-12-12 00:00:00
ibm
ibm
Security Bulletin: Multiple Vulnerabilities in CloudPak for AIOps
2024-01-31 19:31:55
Security Bulletin: IBM QRadar SIEM contains multiple vulnerabilities
2024-05-09 12:31:16
7 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
0.0004 Low
EPSS
Percentile
5.1%
Related for UB:CVE-2022-45884