CVE-2022-47943

CVSS V2 None CVSS V3 None
Description
An issue was discovered in ksmbd in the Linux kernel 5.15 through 5.19 before 5.19.2. There is an out-of-bounds read and OOPS for SMB2_WRITE, when there is a large length in the zero DataOffset case.
Overview
  • CVE ID
  • CVE-2022-47943
  • Assigner
  • cve@mitre.org
  • Vulnerability Status
  • Undergoing Analysis
  • Published Version
  • 2022-12-23T17:15:08
  • Last Modified Date
  • 2023-02-16T14:15:18
CPE Configuration (Product)
CPE Vulnerable Operator Version Start Version End
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* 1 OR 5.15 5.19.2
History
Created Old Value New Value Data Type Notes
2022-12-23 17:15:47 Added to TrackCVE
2022-12-23 20:15:30 2022-12-23T20:15:07 CVE Modified Date updated
2022-12-23 20:15:30 Received Awaiting Analysis Vulnerability Status updated
2022-12-23 20:15:33 References updated
2022-12-25 23:15:28 2022-12-25T23:15:10 CVE Modified Date updated
2022-12-25 23:15:28 An issue was discovered in ksmbd in the Linux kernel before 5.19.2. There is an out-of-bounds read and OOPS for SMB2_WRITE, when there is a large length in the zero DataOffset case. An issue was discovered in ksmbd in the Linux kernel 5.15 through 5.19 before 5.19.2. There is an out-of-bounds read and OOPS for SMB2_WRITE, when there is a large length in the zero DataOffset case. Description updated
2022-12-27 17:15:18 Awaiting Analysis Undergoing Analysis Vulnerability Status updated
2023-01-04 18:20:45 2023-01-04T17:43:50 CVE Modified Date updated
2023-01-04 18:20:45 Undergoing Analysis Analyzed Vulnerability Status updated
2023-01-04 18:20:45 Weakness Enumeration new
2023-01-04 18:20:47 CPE Information updated
2023-01-14 05:14:20 2023-01-14T04:15:12 CVE Modified Date updated
2023-01-14 05:14:20 Analyzed Modified Vulnerability Status updated
2023-01-14 05:14:21 References updated
2023-01-18 15:15:01 Modified Undergoing Analysis Vulnerability Status updated
2023-01-23 19:13:50 2023-01-23T18:54:21 CVE Modified Date updated
2023-01-23 19:13:50 Undergoing Analysis Analyzed Vulnerability Status updated
2023-02-16 15:13:43 2023-02-16T14:15:18 CVE Modified Date updated
2023-02-16 15:13:43 Analyzed Modified Vulnerability Status updated
2023-02-16 15:13:44 References updated
2023-04-11 07:13:21 Modified Undergoing Analysis Vulnerability Status updated