CVE-2022-48804

MEDIUM

Linux Kernel Integer Underflow in vt_ioctl via array_index_nospec

Title source: llm
STIX 2.1

Description

In the Linux kernel, the following vulnerability has been resolved: vt_ioctl: fix array_index_nospec in vt_setactivate array_index_nospec ensures that an out-of-bounds value is set to zero on the transient path. Decreasing the value by one afterwards causes a transient integer underflow. vsa.console should be decreased first and then sanitized with array_index_nospec. Kasper Acknowledgements: Jakob Koschel, Brian Johannesmeyer, Kaveh Razavi, Herbert Bos, Cristiano Giuffrida from the VUSec group at VU Amsterdam.

References (8)

Core 8

Scores

CVSS v3 5.5
EPSS 0.0031
EPSS Percentile 22.0%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact partial

Details

CWE
CWE-191
Status published
Products (35)
linux/Kernel < 4.9.302linux
linux/Kernel 4.10.0 - 4.14.267linux
linux/Kernel 4.15.0 - 4.19.230linux
linux/Kernel 4.19.0 - 5.4.180linux
linux/Kernel 4.20.0 - 5.10.101linux
linux/Kernel 5.11.0 - 5.16.10linux
linux/Kernel 5.5.0 - 5.15.24linux
Linux/Linux < 4.19
Linux/Linux 0ec459ec174031fad02a55e622cf2fc0d2e75a25 - 830c5aa302ec16b4ee641aec769462c37f802c90
Linux/Linux 1aa698b65186c13ed775896ed1dfec7c26c73d60
... and 25 more
Published Jul 16, 2024
Tracked Since Feb 18, 2026