CVE-2022-3107

CVSS V2 None CVSS V3 None
Description
An issue was discovered in the Linux kernel through 5.16-rc6. netvsc_get_ethtool_stats in drivers/net/hyperv/netvsc_drv.c lacks check of the return value of kvmalloc_array() and will cause the null pointer dereference.
Overview
  • CVE ID
  • CVE-2022-3107
  • Assigner
  • secalert@redhat.com
  • Vulnerability Status
  • Analyzed
  • Published Version
  • 2022-12-14T21:15:11
  • Last Modified Date
  • 2022-12-16T21:35:48
CPE Configuration (Product)
CPE Vulnerable Operator Version Start Version End
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* 1 OR 5.16.0
cpe:2.3:o:linux:linux_kernel:5.16.0:-:*:*:*:*:*:* 1 OR
cpe:2.3:o:linux:linux_kernel:5.16.0:rc1:*:*:*:*:*:* 1 OR
cpe:2.3:o:linux:linux_kernel:5.16.0:rc2:*:*:*:*:*:* 1 OR
cpe:2.3:o:linux:linux_kernel:5.16.0:rc3:*:*:*:*:*:* 1 OR
cpe:2.3:o:linux:linux_kernel:5.16.0:rc4:*:*:*:*:*:* 1 OR
cpe:2.3:o:linux:linux_kernel:5.16.0:rc5:*:*:*:*:*:* 1 OR
cpe:2.3:o:linux:linux_kernel:5.16.0:rc6:*:*:*:*:*:* 1 OR
History
Created Old Value New Value Data Type Notes
2022-12-14 22:14:53 Added to TrackCVE
2022-12-18 09:30:11 2022-12-14T21:15:11.943 2022-12-14T21:15:11 CVE Published Date updated
2022-12-18 09:30:11 2022-12-16T21:35:48 CVE Modified Date updated
2022-12-18 09:30:11 Awaiting Analysis Analyzed Vulnerability Status updated
2022-12-18 09:30:25 CPE Information updated