Lucene search

K
ubuntucveUbuntu.comUB:CVE-2022-45919
HistoryNov 27, 2022 - 12:00 a.m.

CVE-2022-45919

2022-11-2700:00:00
ubuntu.com
ubuntu.com
23
linux kernel
dvb
use-after-free

CVSS3

7

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS

0

Percentile

12.6%

An issue was discovered in the Linux kernel through 6.0.10. In
drivers/media/dvb-core/dvb_ca_en50221.c, a use-after-free can occur is
there is a disconnect after an open, because of the lack of a wait_event.

Bugs

Notes

Author Note
Priority reason: Exploiting this vulnerability requires disconnecting a DVB device, which is why this has been prioritized as low.
sbeattie exploiting this vulnerability requires disconnecting a DVB device, which is why this has been prioritized as low.
Rows per page:
1-10 of 641

CVSS3

7

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS

0

Percentile

12.6%