GoogleOSV:CVE-2022-48773CVE-2022-48773
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
AI Score
Confidence
High
EPSS
Percentile
5.0%
In the Linux kernel, the following vulnerability has been resolved:
xprtrdma: fix pointer derefs in error cases of rpcrdma_ep_create
If there are failures then we must not leave the non-NULL pointers with
the error value, otherwise rpcrdma_ep_destroy gets confused and tries
free them, resulting in an Oops.
References
git.kernel.org/stable/c/1e7433fb95ccc01629a5edaa4ced0cd8c98d0ae0
git.kernel.org/stable/c/2526d4d8b209dc5ac1fbeb468149774888b2a141
git.kernel.org/stable/c/9921c866dc369577c3ebb9adf2383b01b58c18de
git.kernel.org/stable/c/a9c10b5b3b67b3750a10c8b089b2e05f5e176e33
security-tracker.debian.org/tracker/CVE-2022-48773
Related
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
AI Score
Confidence
High
EPSS
Percentile
5.0%