VulDB Recent Entries

A vulnerability classified as critical was found in Linux Kernel up to 5.15.77/6.0.7. Affected by this vulnerability is an unknown functionality of the component ibmvnic. The manipulation leads to memory leak. This vulnerability is known as CVE-2022-49906. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as problematic has been found in Linux Kernel up to 6.0.8 on CAP_TO_MASK. Affected is an unknown function of the file security/commoncap.c. The manipulation leads to out-of-bounds read. This vulnerability is traded as CVE-2022-49870. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 5.15.78/6.0.8. It has been rated as critical. This issue affects the function free_netdev. The manipulation leads to memory leak. The identification of this vulnerability is CVE-2022-49867. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 5.15.78/6.0.8. It has been declared as critical. This vulnerability affects the function free_netdev. The manipulation leads to memory leak. This vulnerability was named CVE-2022-49866. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 5.15.78/6.0.8. It has been classified as critical. This affects the function svm_migrate_to_ram. The manipulation leads to null pointer dereference. This vulnerability is uniquely identified as CVE-2022-49864. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 5.4.224/5.10.154/5.15.78/6.0.8 and classified as critical. Affected by this issue is the function can_rx_register of the component can. The manipulation leads to null pointer dereference. This vulnerability is handled as CVE-2022-49863. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Linux Kernel up to 5.15.78/6.0.8 and classified as critical. Affected by this vulnerability is the function device_register of the component dmaengine. The manipulation leads to memory leak. This vulnerability is known as CVE-2022-49860. The attack can only be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, was found in Linux Kernel up to 5.15.78/6.0.8. Affected is the function lapbeth_open of the file net/core/dev.c of the component net. The manipulation leads to stack-based buffer overflow. This vulnerability is traded as CVE-2022-49859. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in Linux Kernel up to 5.10.154/5.15.78/6.0.8. This issue affects the function prestera_rxtx_switch_init of the component net. The manipulation leads to memory leak. The identification of this vulnerability is CVE-2022-49857. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical was found in Linux Kernel up to 5.15.78/6.0.8. This vulnerability affects the function ipc_pcie_read_bios_cfg of the component net. The manipulation leads to memory leak. This vulnerability was named CVE-2022-49855. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as problematic has been found in Linux Kernel up to 5.15.78/6.0.8. This affects the function dev_args_match_device of the file fs/btrfs/volumes.c of the component btrfs. The manipulation leads to reachable assertion. This vulnerability is uniquely identified as CVE-2022-49849. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.0.8. It has been rated as critical. Affected by this issue is the function am65_cpsw_nuss_phylink_cleanup of the component net. The manipulation leads to memory corruption. This vulnerability is handled as CVE-2022-49847. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 5.4.224/5.10.154/5.15.78/6.0.8. It has been declared as problematic. Affected by this vulnerability is the function j1939_send_one of the component can. The manipulation leads to improper initialization. This vulnerability is known as CVE-2022-49845. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel. It has been classified as critical. Affected is the function migrate_vma_setup of the component CPU Page. The manipulation leads to memory corruption. This vulnerability is traded as CVE-2022-49843. The attack can only be done within the local network. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability was found in Linux Kernel up to 6.0.9 and classified as critical. This issue affects the function snd_soc_exit of the component ASoC. The manipulation leads to use after free. The identification of this vulnerability is CVE-2022-49842. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Linux Kernel up to 6.0.9 and classified as critical. This vulnerability affects the function bpf_prog_test_run_skb. The manipulation leads to use after free. This vulnerability was named CVE-2022-49840. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, was found in Linux Kernel up to 5.10.156/5.15.79/6.0.9. This affects the function sas_phy_add of the component scsi. The manipulation leads to null pointer dereference. This vulnerability is uniquely identified as CVE-2022-49839. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in Linux Kernel up to 4.19.266/5.4.224/5.10.155/5.15.79/6.0.9. Affected by this issue is the function siox_device_add of the component siox. The manipulation leads to memory leak. This vulnerability is handled as CVE-2022-49836. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical was found in Linux Kernel up to 6.0.8 on Shigeru. Affected by this vulnerability is the function ns_writer of the component nilfs2. The manipulation leads to use after free. This vulnerability is known as CVE-2022-49834. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical has been found in Linux Kernel up to 6.0.8. Affected is the function btrfs_device. The manipulation leads to null pointer dereference. This vulnerability is traded as CVE-2022-49833. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.