Lucene search
LinuxVULNRICHMENT:CVE-2022-48932HistoryAug 22, 2024 - 3:31 a.m.
CVE-2022-48932 net/mlx5: DR, Fix slab-out-of-bounds in mlx5_cmd_dr_create_fte
2024-08-2203:31:25
Linux
github.com
2
linux kernel
vulnerability
net/mlx5
slab-out-of-bounds
mlx5_cmd_dr_create_fte
bug
kasan
In the Linux kernel, the following vulnerability has been resolved:
net/mlx5: DR, Fix slab-out-of-bounds in mlx5_cmd_dr_create_fte
When adding a rule with 32 destinations, we hit the following out-of-band
access issue:
BUG: KASAN: slab-out-of-bounds in mlx5_cmd_dr_create_fte+0x18ee/0x1e70
This patch fixes the issue by both increasing the allocated buffers to
accommodate for the needed actions and by checking the number of actions
to prevent this issue when a rule with too many actions is provided.
Related
cvelist
cvelist
osv
osv
CVE-2022-48932
2024-08-22 04:15:16
Security update for the Linux Kernel
2024-09-12 13:26:12
Security update for the Linux Kernel
2024-09-10 08:46:37
ubuntucve
ubuntucve
CVE-2022-48932
2024-08-22 00:00:00
nvd
nvd
CVE-2022-48932
2024-08-22 04:15:16
redhatcve
redhatcve
CVE-2022-48932
2024-08-22 15:16:31
debiancve
debiancve
CVE-2022-48932
2024-08-22 04:15:16
cve
cve
CVE-2022-48932
2024-08-22 04:15:16
redos
redos
ROS-20240829-02
2024-08-29 00:00:00
nessus
nessus
SUSE SLES15 / openSUSE 15 Security Update : kernel (SUSE-SU-2024:3190-1)
2024-09-11 00:00:00
SUSE SLES15 / openSUSE 15 Security Update : kernel (SUSE-SU-2024:3209-1)
2024-09-12 00:00:00
AI Score
6.9
Confidence
Low
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
Related for VULNRICHMENT:CVE-2022-48932