[email protected]CVE-2022-45887

HistoryNov 25, 2022 - 4:15 a.m.

CVE-2022-45887

2022-11-2504:15:00

CWE-772

CWE-362

[email protected]

web.nvd.nist.gov

cve-2022-45887

linux kernel

memory leak

ttusb_dec.c

nvd

4.7 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

5.3 Medium

AI Score

Confidence

High

1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

HIGH

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:H/Au:S/C:N/I:N/A:P

0.0004 Low

EPSS

Percentile

5.2%

JSON

An issue was discovered in the Linux kernel through 6.0.9. drivers/media/usb/ttusb-dec/ttusb_dec.c has a memory leak because of the lack of a dvb_frontend_detach call.

CPENameOperatorVersion
linux:linux_kernellinux linux kernelle6.0.9
netapp:h410c_firmwarenetapp h410c firmwareeq-
netapp:h300s_firmwarenetapp h300s firmwareeq-
netapp:h500s_firmwarenetapp h500s firmwareeq-
netapp:h700s_firmwarenetapp h700s firmwareeq-
netapp:h410s_firmwarenetapp h410s firmwareeq-

CPE	Name	Operator	Version
linux:linux_kernel	linux linux kernel	le	6.0.9
netapp:h410c_firmware	netapp h410c firmware	eq	-
netapp:h300s_firmware	netapp h300s firmware	eq	-
netapp:h500s_firmware	netapp h500s firmware	eq	-
netapp:h700s_firmware	netapp h700s firmware	eq	-
netapp:h410s_firmware	netapp h410s firmware	eq	-