Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistLinuxCVELIST:CVE-2022-48932
HistoryAug 22, 2024 - 3:31 a.m.

CVE-2022-48932 net/mlx5: DR, Fix slab-out-of-bounds in mlx5_cmd_dr_create_fte

2024-08-2203:31:25
Linux
www.cve.org
4
linux kernel
vulnerability
net/mlx5
dr
slab-out-of-bounds
mlx5_cmd_dr_create_fte
buffer allocation
action limit

EPSS

0

Percentile

9.5%

JSON

In the Linux kernel, the following vulnerability has been resolved:

net/mlx5: DR, Fix slab-out-of-bounds in mlx5_cmd_dr_create_fte

When adding a rule with 32 destinations, we hit the following out-of-band
access issue:

BUG: KASAN: slab-out-of-bounds in mlx5_cmd_dr_create_fte+0x18ee/0x1e70

This patch fixes the issue by both increasing the allocated buffers to
accommodate for the needed actions and by checking the number of actions
to prevent this issue when a rule with too many actions is provided.

CNA Affected

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "drivers/net/ethernet/mellanox/mlx5/core/steering/fs_dr.c"
    ],
    "versions": [
      {
        "version": "1ffd498901c1",
        "lessThan": "4ad319cdfbe5",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "1ffd498901c1",
        "lessThan": "0aec12d97b20",
        "status": "affected",
        "versionType": "git"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "affected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "drivers/net/ethernet/mellanox/mlx5/core/steering/fs_dr.c"
    ],
    "versions": [
      {
        "version": "5.16",
        "status": "affected"
      },
      {
        "version": "0",
        "lessThan": "5.16",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "5.16.12",
        "lessThanOrEqual": "5.16.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "5.17",
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "versionType": "original_commit_for_fix"
      }
    ]
  }
]

Related

vulnrichment 1
osv 4
ubuntucve 1
nvd 1
redhatcve 1
debiancve 1
cve 1
redos 1
nessus 2
vulnrichment
vulnrichment
CVE-2022-48932 net/mlx5: DR, Fix slab-out-of-bounds in mlx5_cmd_dr_create_fte
2024-08-22 03:31:25
osv
osv
CVE-2022-48932
2024-08-22 04:15:16
Security update for the Linux Kernel
2024-09-12 13:26:12
Security update for the Linux Kernel
2024-09-10 08:46:37
ubuntucve
ubuntucve
CVE-2022-48932
2024-08-22 00:00:00
nvd
nvd
CVE-2022-48932
2024-08-22 04:15:16
redhatcve
redhatcve
CVE-2022-48932
2024-08-22 15:16:31
debiancve
debiancve
CVE-2022-48932
2024-08-22 04:15:16
cve
cve
CVE-2022-48932
2024-08-22 04:15:16
redos
redos
ROS-20240829-02
2024-08-29 00:00:00
nessus
nessus
SUSE SLES15 / openSUSE 15 Security Update : kernel (SUSE-SU-2024:3209-1)
2024-09-12 00:00:00
SUSE SLES15 / openSUSE 15 Security Update : kernel (SUSE-SU-2024:3190-1)
2024-09-11 00:00:00

EPSS

0

Percentile

9.5%

JSON
Related for CVELIST:CVE-2022-48932
vulnrichment1osv4ubuntucve1nvd1redhatcve1debiancve1cve1redos1nessus2