Lucene search
GoogleOSV:CVE-2022-48703HistoryMay 03, 2024 - 4:15 p.m.
CVE-2022-48703
2024-05-0316:15:00
Google
osv.dev
2
linux kernel
vulnerability
thermal
int340x_thermal
zero length buffer
null pointer dereference
patch
software
AI Score
6.8
Confidence
Low
In the Linux kernel, the following vulnerability has been resolved: thermal/int340x_thermal: handle data_vault when the value is ZERO_SIZE_PTR In some case, the GDDV returns a package with a buffer which has zero length. It causes that kmemdup() returns ZERO_SIZE_PTR (0x10). Then the data_vault_read() got NULL point dereference problem when accessing the 0x10 value in data_vault. [ 71.024560] BUG: kernel NULL pointer dereference, address: 0000000000000010 This patch uses ZERO_OR_NULL_PTR() for checking ZERO_SIZE_PTR or NULL value in data_vault.
Related
vulnrichment
vulnrichment
ubuntucve
ubuntucve
CVE-2022-48703
2024-05-03 00:00:00
redhatcve
redhatcve
CVE-2022-48703
2024-05-03 21:28:41
cve
cve
CVE-2022-48703
2024-05-03 16:15:08
cvelist
cvelist
nvd
nvd
CVE-2022-48703
2024-05-03 16:15:08
debiancve
debiancve
CVE-2022-48703
2024-05-03 16:15:08
nessus
nessus
EulerOS 2.0 SP12 : kernel (EulerOS-SA-2024-2344)
2024-09-10 00:00:00
EulerOS 2.0 SP12 : kernel (EulerOS-SA-2024-2352)
2024-09-10 00:00:00
EulerOS 2.0 SP11 : kernel (EulerOS-SA-2024-2206)
2024-08-21 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2024-2352)
2024-09-10 00:00:00
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2024-2207)
2024-08-21 00:00:00
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2024-2206)
2024-08-21 00:00:00