CVE-2022-49859

HIGH

Linux Kernel 5.13-5.15.79 and 5.16-6.0.9 - Out-of-bounds Write in lapbeth_open()

Title source: llm
STIX 2.1

Description

In the Linux kernel, the following vulnerability has been resolved: net: lapbether: fix issue of invalid opcode in lapbeth_open() If lapb_register() failed when lapb device goes to up for the first time, the NAPI is not disabled. As a result, the invalid opcode issue is reported when the lapb device goes to up for the second time. The stack info is as follows: [ 1958.311422][T11356] kernel BUG at net/core/dev.c:6442! [ 1958.312206][T11356] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 1958.315979][T11356] RIP: 0010:napi_enable+0x16a/0x1f0 [ 1958.332310][T11356] Call Trace: [ 1958.332817][T11356] <TASK> [ 1958.336135][T11356] lapbeth_open+0x18/0x90 [ 1958.337446][T11356] __dev_open+0x258/0x490 [ 1958.341672][T11356] __dev_change_flags+0x4d4/0x6a0 [ 1958.345325][T11356] dev_change_flags+0x93/0x160 [ 1958.346027][T11356] devinet_ioctl+0x1276/0x1bf0 [ 1958.346738][T11356] inet_ioctl+0x1c8/0x2d0 [ 1958.349638][T11356] sock_ioctl+0x5d1/0x750 [ 1958.356059][T11356] __x64_sys_ioctl+0x3ec/0x1790 [ 1958.365594][T11356] do_syscall_64+0x35/0x80 [ 1958.366239][T11356] entry_SYSCALL_64_after_hwframe+0x46/0xb0 [ 1958.377381][T11356] </TASK>

Scores

CVSS v3 7.8
EPSS 0.0017
EPSS Percentile 6.9%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-787
Status published
Products (12)
linux/Kernel 5.13.0 - 5.15.79linux
linux/Kernel 5.16.0 - 6.0.9linux
Linux/Linux < 5.13
Linux/Linux 5.13
Linux/Linux 5.15.79 - 5.15.*
Linux/Linux 514e1150da9cd8d7978d990a353636cf1a7a87c2 - 3faf7e14ec0c3462c2d747fa6793b8645d1391df
Linux/Linux 514e1150da9cd8d7978d990a353636cf1a7a87c2 - 4689bd3a1b23a1bd917899e63b81bca2ccdfab45
Linux/Linux 514e1150da9cd8d7978d990a353636cf1a7a87c2 - ed4940050a7ce7fc2ccd51db580ef1ade64290b1
Linux/Linux 6.0.9 - 6.0.*
Linux/Linux 6.1
... and 2 more
Published May 01, 2025
Tracked Since Feb 18, 2026