CVE-2022-48787

HIGH EPSS 15.3%
Published Jul 16, 20241y ago · Modified Jun 17, 20261w ago
7.8 CVSS 3.1
High
Find Similar
Published Jul 16, 2024 1y ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: iwlwifi: fix use-after-free If no firmware was present at all (or, presumably, all of the firmware files failed to parse), we end up unbinding by calling device_release_driver(), which calls remove(), which then in iwlwifi calls iwl_drv_stop(), freeing the 'drv' struct. However the new code I added will still erroneously access it after it was freed. Set 'failure=false' in this case to avoid the access, all data was already freed anyway.

CVSS Details

Base Score
7.8
Exploitability
1.8
Impact
5.9
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality High
Integrity High
Availability High

Threat Intelligence

EPSS Exploit Probability
15.3% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-416 Use After Free Memory Safety

Affected Products 6

VendorProductVersionRange
linuxlinux_kernel*≥4.14.263  –  <4.14.268
linuxlinux_kernel*≥4.19.226  –  <4.19.231
linuxlinux_kernel*≥5.4.174  –  <5.4.181
linuxlinux_kernel*≥5.10.94  –  <5.10.102
linuxlinux_kernel*≥5.15.17  –  <5.15.25
linuxlinux_kernel*≥5.16.3  –  <5.16.11

References 7

  • git.kernel.org https://git.kernel.org/stable/c/008508c16af0087cda0394e1ac6f0493b01b6063
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/494de920d98f125b099f27a2d274850750aff957
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/7d6475179b85a83186ccce59cdc359d4f07d0bcb
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/9958b9cbb22145295ee1ffaea0904c383da2c05d
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/bea2662e7818e15d7607d17d57912ac984275d94
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/d3b98fe36f8a06ce654049540773256ab59cb53d
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ddd46059f7d99119b62d44c519df7a79f2e6a515
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/008508c16af0087cda0394e1ac6f0493b01b6063
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/494de920d98f125b099f27a2d274850750aff957
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/7d6475179b85a83186ccce59cdc359d4f07d0bcb
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/9958b9cbb22145295ee1ffaea0904c383da2c05d
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/bea2662e7818e15d7607d17d57912ac984275d94
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/d3b98fe36f8a06ce654049540773256ab59cb53d
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ddd46059f7d99119b62d44c519df7a79f2e6a515
    Patch