Lucene search

Ubuntu.comUB:CVE-2022-48879

HistoryAug 21, 2024 - 12:00 a.m.

CVE-2022-48879

2024-08-2100:00:00

ubuntu.com

linux

kernel

cve-2022-48879

vulnerability

efi

null-deref

init error path

runtime services

workqueue

pointer

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

AI Score

7.3

Confidence

Low

JSON

In the Linux kernel, the following vulnerability has been resolved:
efi: fix NULL-deref in init error path
In cases where runtime services are not supported or have been disabled,
the runtime services workqueue will never have been allocated.
Do not try to destroy the workqueue unconditionally in the unlikely
event that EFI initialisation fails to avoid dereferencing a NULL
pointer.

OSVersionArchitecturePackageVersionFilename
ubuntu20.04noarchlinux< 5.4.0-144.161UNKNOWN
ubuntu22.04noarchlinux< 5.15.0-70.77UNKNOWN
ubuntu20.04noarchlinux-aws< 5.4.0-1097.105UNKNOWN
ubuntu22.04noarchlinux-aws< 5.15.0-1034.38UNKNOWN
ubuntu20.04noarchlinux-aws-5.15< 5.15.0-1034.38~20.04.1UNKNOWN
ubuntu18.04noarchlinux-aws-5.4< anyUNKNOWN
ubuntu20.04noarchlinux-azure< 5.4.0-1104.110UNKNOWN
ubuntu22.04noarchlinux-azure< 5.15.0-1036.43UNKNOWN
ubuntu20.04noarchlinux-azure-5.15< 5.15.0-1036.43~20.04.1UNKNOWN
ubuntu18.04noarchlinux-azure-5.4< anyUNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	20.04	noarch	linux	< 5.4.0-144.161	UNKNOWN
ubuntu	22.04	noarch	linux	< 5.15.0-70.77	UNKNOWN
ubuntu	20.04	noarch	linux-aws	< 5.4.0-1097.105	UNKNOWN
ubuntu	22.04	noarch	linux-aws	< 5.15.0-1034.38	UNKNOWN
ubuntu	20.04	noarch	linux-aws-5.15	< 5.15.0-1034.38~20.04.1	UNKNOWN
ubuntu	18.04	noarch	linux-aws-5.4	< any	UNKNOWN
ubuntu	20.04	noarch	linux-azure	< 5.4.0-1104.110	UNKNOWN
ubuntu	22.04	noarch	linux-azure	< 5.15.0-1036.43	UNKNOWN
ubuntu	20.04	noarch	linux-azure-5.15	< 5.15.0-1036.43~20.04.1	UNKNOWN
ubuntu	18.04	noarch	linux-azure-5.4	< any	UNKNOWN

Rows per page:

1-10 of 431

References

git.kernel.org/linus/703c13fe3c9af557d312f5895ed6a5fda2711104 (6.2-rc4)

git.kernel.org/stable/c/4ca71bc0e1995d15486cd7b60845602a28399cb5

git.kernel.org/stable/c/585a0b2b3ae7903c6abee3087d09c69e955a7794

git.kernel.org/stable/c/5fcf75a8a4c3e7ee9122d143684083c9faf20452

git.kernel.org/stable/c/703c13fe3c9af557d312f5895ed6a5fda2711104

git.kernel.org/stable/c/adc96d30f6503d30dc68670c013716f1d9fcc747

git.kernel.org/stable/c/e2ea55564229e4bea1474af15b111b3a3043b76f

launchpad.net/bugs/cve/CVE-2022-48879

nvd.nist.gov/vuln/detail/CVE-2022-48879

security-tracker.debian.org/tracker/CVE-2022-48879

www.cve.org/CVERecord?id=CVE-2022-48879

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

AI Score

7.3

Confidence

Low

JSON

Related for UB:CVE-2022-48879