CVE-2022-45886

An issue was discovered in the Linux kernel through 6.0.9. drivers/media/dvb-core/dvb_net.c has a .disconnect versus dvb_device_open race condition that leads to a use-after-free.
Configurations

Configuration 1 (hide)

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

History

29 Nov 2022, 20:54

Type Values Removed Values Added
CWE CWE-416
CWE-362
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 7.0
First Time Linux linux Kernel
Linux
CPE cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
References (MISC) https://lore.kernel.org/linux-media/20221115131822.6640-1-imv4bel@gmail.com/ - (MISC) https://lore.kernel.org/linux-media/20221115131822.6640-1-imv4bel@gmail.com/ - Exploit, Patch, Vendor Advisory
References (MISC) https://lore.kernel.org/linux-media/20221115131822.6640-3-imv4bel@gmail.com/ - (MISC) https://lore.kernel.org/linux-media/20221115131822.6640-3-imv4bel@gmail.com/ - Exploit, Patch, Vendor Advisory

25 Nov 2022, 04:15

Type Values Removed Values Added
New CVE

Information

Published : 2022-11-25 04:15

Updated : 2022-11-29 20:54


NVD link : CVE-2022-45886

Mitre link : CVE-2022-45886


JSON object : View

Products Affected

linux

  • linux_kernel
CWE
CWE-416

Use After Free

CWE-362

Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')