VulDB Recent Entries

A vulnerability has been found in Linux Kernel up to 6.0.12 and classified as problematic. This vulnerability affects the function greth_init_rings of the component aeroflex. The manipulation leads to allocation of resources. This vulnerability was named CVE-2022-48958. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, was found in Linux Kernel up to 5.15.82/6.0.12. This affects the function dpaa2_switch_acl_entry_add. The manipulation leads to memory leak. This vulnerability is uniquely identified as CVE-2022-48957. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in Linux Kernel up to 5.15.82/6.0.12. Affected by this issue is the function tbnet_open. The manipulation leads to memory leak. This vulnerability is handled as CVE-2022-48955. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical was found in Linux Kernel up to 5.15.83/6.0.13. Affected by this vulnerability is the function perf_pending_task. The manipulation leads to use after free. This vulnerability is known as CVE-2022-48950. The attack can only be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as problematic has been found in Linux Kernel up to 6.0.13. Affected is the function snd_soc_put_volsw_sx. The manipulation leads to out-of-bounds read. This vulnerability is traded as CVE-2022-48951. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.0.12. It has been rated as critical. This issue affects the function ip6_fragment in the library include/net/ip6_fib.h. The manipulation leads to use after free. The identification of this vulnerability is CVE-2022-48956. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.1.112/6.6.56/6.11.3. It has been declared as problematic. This vulnerability affects the function wd33c93_intr. The manipulation of the argument scsi_pointer leads to improper initialization. This vulnerability was named CVE-2024-50026. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.0.11. It has been classified as critical. This affects the function btrfs_qgroup_inherit of the file include/linux/sched/mm.h. The manipulation leads to stack-based buffer overflow. This vulnerability is uniquely identified as CVE-2022-49033. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 5.10.157/5.15.81/6.0.11 and classified as critical. Affected by this issue is the function e100_xmit_prepare. The manipulation leads to use after free. This vulnerability is handled as CVE-2022-49026. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Linux Kernel up to 5.15.81/6.0.11 and classified as problematic. Affected by this vulnerability is the function m_can_class_free_dev. The manipulation leads to allocation of resources. This vulnerability is known as CVE-2022-49024. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, was found in Linux Kernel up to 6.0.11. Affected is the function in_atomic of the file net/mptcp/protocol.c of the component mptcp. The manipulation leads to stack-based buffer overflow. This vulnerability is traded as CVE-2022-49018. The attack can only be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in Linux Kernel up to 5.15.81/6.0.11. This issue affects the function of_node_get/of_node_put of the component mdiobus. The manipulation leads to improper update of reference count. The identification of this vulnerability is CVE-2022-49016. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical was found in Linux Kernel up to 5.4.225/5.10.157/5.15.81/6.0.11. This vulnerability affects the function sctp_stream_outq_migrate. The manipulation leads to memory leak. This vulnerability was named CVE-2022-49013. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical has been found in Linux Kernel up to 5.15.81/6.0.11. This affects an unknown part. The manipulation leads to denial of service. This vulnerability is uniquely identified as CVE-2022-49004. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 5.15.81/6.0.11. It has been rated as critical. Affected by this issue is the function get_overflow_stack. The manipulation leads to stack-based buffer overflow. This vulnerability is handled as CVE-2022-49001. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.0.11. It has been declared as critical. Affected by this vulnerability is the function test_bpf. The manipulation leads to stack-based buffer overflow. This vulnerability is known as CVE-2022-48998. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.0.11. It has been classified as problematic. Affected is the function damon_sysfs_set_schemes. The manipulation leads to Privilege Escalation. This vulnerability is traded as CVE-2022-48996. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.0.12 and classified as problematic. This issue affects the function seq_copy_in_user of the component ALSA. The manipulation leads to incorrect control flow. The identification of this vulnerability is CVE-2022-48994. The attack can only be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Linux Kernel up to 5.4.226/5.10.158/5.15.82/6.0.12 and classified as critical. This vulnerability affects the function gup_pud_range of the component HugeTLB Page Handler. The manipulation leads to denial of service. This vulnerability was named CVE-2022-48986. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, was found in Linux Kernel up to 5.15.82/6.0.12. This affects the function io_tctx_exit_cb. The manipulation leads to null pointer dereference. This vulnerability is uniquely identified as CVE-2022-48983. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.