Kernel subsystem within OpenHarmony-v3.1.4 and prior versions in kernel_liteos_a has a kernel stack overflow vulnerability when call SysClockGettime. 4 bytes padding data from kernel stack are copied to user space incorrectly and leaked.
References
Link | Resource |
---|---|
https://gitee.com/openharmony/security/blob/master/en/security-disclosure/2022/2022-12.md | Third Party Advisory |
Configurations
Configuration 1 (hide)
|
History
09 Sep 2024, 12:21
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-01-09 03:15
Updated : 2024-09-09 12:21
NVD link : CVE-2022-45126
Mitre link : CVE-2022-45126
CVE.ORG link : CVE-2022-45126
JSON object : View
Products Affected
openatom
- openharmony
openharmony
- openharmony