CVE-2022-48966

HIGH

Linux Kernel 4.5-6.0.13 - Out-of-bounds Read in mvneta_config_rss()

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: net: mvneta: Prevent out of bounds read in mvneta_config_rss() The pp->indir[0] value comes from the user. It is passed to: if (cpu_online(pp->rxq_def)) inside the mvneta_percpu_elect() function. It needs bounds checkeding to ensure that it is not beyond the end of the cpu bitmap.

References (8)

Core 8

Core References

Patch

https://git.kernel.org/stable/c/3ceffb8f410b93553fb16fe7e84aa0d35b3ba79b

Patch

https://git.kernel.org/stable/c/47a1a2f6cd5ec3a4f8a2d9bfa1e0605347cdb92c

Patch

https://git.kernel.org/stable/c/5a142486a0db6b0b85031f22d69acd0cdcf8f72b

Patch

https://git.kernel.org/stable/c/eec1fc21edc2bb99c9e66cf66f0b5d4d643fbb50

Patch

https://git.kernel.org/stable/c/146ebee8fcdb349d7ec0e49915e6cdafb92544ae

Patch

https://git.kernel.org/stable/c/a6b30598fec84f8809f5417cde73071ca43e8471

Patch

https://git.kernel.org/stable/c/6ca0a506dddc3e1d636935eef339576b263bf3d8

Patch

https://git.kernel.org/stable/c/e8b4fc13900b8e8be48debffd0dfd391772501f7

Scores

CVSS v3 7.1

EPSS 0.0024

EPSS Percentile 15.5%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-125

Status published

Products (27)

linux/Kernel 4.10.0 - 4.14.302linux

linux/Kernel 4.15.0 - 4.19.269linux

linux/Kernel 4.20.0 - 5.4.227linux

linux/Kernel 4.5.0 - 4.9.336linux

linux/Kernel 5.11.0 - 5.15.83linux

linux/Kernel 5.16.0 - 6.0.13linux

linux/Kernel 5.5.0 - 5.10.159linux

Linux/Linux < 4.5

Linux/Linux 4.14.302 - 4.14.*

Linux/Linux 4.19.269 - 4.19.*

... and 17 more

Published Oct 21, 2024

Tracked Since Feb 18, 2026