CVE-2022-45884

An issue was discovered in the Linux kernel through 6.0.9. drivers/media/dvb-core/dvbdev.c has a use-after-free, related to dvb_register_device dynamically allocating fops.
Configurations

Configuration 1 (hide)

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

History

29 Nov 2022, 21:00

Type Values Removed Values Added
First Time Linux linux Kernel
Linux
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 7.0
CPE cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
References (MISC) https://lore.kernel.org/linux-media/20221115131822.6640-4-imv4bel@gmail.com/ - (MISC) https://lore.kernel.org/linux-media/20221115131822.6640-4-imv4bel@gmail.com/ - Exploit, Patch, Vendor Advisory
References (MISC) https://lore.kernel.org/linux-media/20221115131822.6640-1-imv4bel@gmail.com/ - (MISC) https://lore.kernel.org/linux-media/20221115131822.6640-1-imv4bel@gmail.com/ - Exploit, Patch, Vendor Advisory
CWE CWE-416
CWE-362

25 Nov 2022, 04:15

Type Values Removed Values Added
New CVE

Information

Published : 2022-11-25 04:15

Updated : 2022-11-29 21:00


NVD link : CVE-2022-45884

Mitre link : CVE-2022-45884


JSON object : View

Products Affected

linux

  • linux_kernel
CWE
CWE-416

Use After Free

CWE-362

Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')