Linux Distros Unpatched Vulnerability : CVE-2022-0998

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An integer overflow flaw was found in the Linux kernel's virtio device driver code in the way a user triggers the vhostvdpaconfigvalidate function. This flaw...

CVE-2021-47604 vduse: check that offset is within bounds in get_config()

In the Linux kernel, the following vulnerability has been resolved: vduse: check that offset is within bounds in getconfig This condition checks "len" but it does not check "offset" and that could result in an out of bounds read if "offset dev-configsize". The problem is that since both variables...

CVE-2022-0998

An integer overflow flaw was found in the Linux kernel’s virtio device driver code in the way a user triggers the vhostvdpaconfigvalidate function. This flaw allows a local user to crash or potentially escalate their privileges on the system...

CVE-2022-0998

CVE-2022-0998 details an integer overflow in the Linux kernel's virtio device driver, specifically in vhost_vdpa_config_validate, permitting a local user to crash the system or potentially escalate privileges. Connected advisories confirm this flaw in the kernel virtio path and reference related ...

CVE-2022-0998

An integer overflow flaw was found in the Linux kernel’s virtio device driver code in the way a user triggers the vhostvdpaconfigvalidate function. This flaw allows a local user to crash or potentially escalate their privileges on the system...