CVE-2022-49029

HIGH EPSS 15.5%
Published Oct 21, 20241y ago · Modified Jun 17, 20261w ago
7.8 CVSS 3.1
High
Find Similar
Published Oct 21, 2024 1y ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: hwmon: (ibmpex) Fix possible UAF when ibmpex_register_bmc() fails Smatch report warning as follows: drivers/hwmon/ibmpex.c:509 ibmpex_register_bmc() warn: '&data->list' not removed from list If ibmpex_find_sensors() fails in ibmpex_register_bmc(), data will be freed, but data->list will not be removed from driver_data.bmc_data, then list traversal may cause UAF. Fix by removeing it from driver_data.bmc_data before free().

CVSS Details

Base Score
7.8
Exploitability
1.8
Impact
5.9
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality High
Integrity High
Availability High

Threat Intelligence

EPSS Exploit Probability
15.5% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-416 Use After Free Memory Safety

Affected Products 14

VendorProductVersionRange
linuxlinux_kernel*≥2.6.24  –  <4.9.335
linuxlinux_kernel*≥4.10  –  <4.14.301
linuxlinux_kernel*≥4.15  –  <4.19.268
linuxlinux_kernel*≥4.20  –  <5.4.226
linuxlinux_kernel*≥5.5  –  <5.10.158
linuxlinux_kernel*≥5.11  –  <5.15.82
linuxlinux_kernel*≥5.16  –  <6.0.12
linuxlinux_kernel6.1any
linuxlinux_kernel6.1any
linuxlinux_kernel6.1any
linuxlinux_kernel6.1any
linuxlinux_kernel6.1any
linuxlinux_kernel6.1any
linuxlinux_kernel6.1any

References 8

  • git.kernel.org https://git.kernel.org/stable/c/24b9633f7db7f4809be7053df1d2e117e7c2de10
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/45f6e81863747c0d7bc6a95ec51129900e71467a
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/798198273bf86673b970b51acdb35e57f42b3fcb
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/7b2b67fe1339389e0bf3c37c7a677a004ac0e4e3
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/90907cd4d11351ff76c9a447bcb5db0e264c47cd
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/e2a87785aab0dac190ac89be6a9ba955e2c634f2
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/e65cfd1f9cd27d9c27ee5cb88128a9f79f25d863
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/f2a13196ad41c6c2ab058279dffe6c97292e753a
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/24b9633f7db7f4809be7053df1d2e117e7c2de10
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/45f6e81863747c0d7bc6a95ec51129900e71467a
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/798198273bf86673b970b51acdb35e57f42b3fcb
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/7b2b67fe1339389e0bf3c37c7a677a004ac0e4e3
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/90907cd4d11351ff76c9a447bcb5db0e264c47cd
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/e2a87785aab0dac190ac89be6a9ba955e2c634f2
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/e65cfd1f9cd27d9c27ee5cb88128a9f79f25d863
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/f2a13196ad41c6c2ab058279dffe6c97292e753a
    Patch