Lucene search
Redhat.comRH:CVE-2022-47938HistoryDec 23, 2022 - 5:34 p.m.
CVE-2022-47938
2022-12-2317:34:52
redhat.com
access.redhat.com
18
0.002 Low
EPSS
Percentile
59.5%
A denial-of-service flaw was found in the Linux Kernel while handling SMB2_TREE_CONNECT commands in CIFS Filesystem. The issue results from the lack of proper validation of user-supplied data, which can result in a read past the end of an allocated buffer. An attacker can leverage this vulnerability to create a denial-of-service condition in the system.
Mitigation
Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.
Related
zdi
zdi
Linux Kernel ksmbd Out-Of-Bounds Read Denial-of-Service Vulnerability
2022-12-22 00:00:00
prion
prion
Design/Logic Flaw
2022-12-23 16:15:00
cvelist
cvelist
CVE-2022-47938
2022-12-23 00:00:00
ubuntucve
ubuntucve
CVE-2022-47938
2022-12-23 00:00:00
cve
cve
CVE-2022-47938
2022-12-23 16:15:00
cbl_mariner
cbl_mariner
CVE-2022-47938 affecting package kernel for versions less than 5.15.86.1-1
2023-01-17 16:47:16
nessus
nessus
CBL Mariner 2.0 Security Update: kernel (CVE-2022-47938)
2023-03-20 00:00:00
Ubuntu 20.04 LTS / 22.04 LTS : Linux kernel kmsbd multiple vulnerabilities
2023-01-11 00:00:00
RHEL 7 : kernel (Unpatched Vulnerability)
2024-05-11 00:00:00
debiancve
debiancve
CVE-2022-47938
2022-12-23 16:15:00