In the Linux kernel, the following vulnerability has been resolved:
netfilter: nfnetlink_osf: fix possible bogus match in nf_osf_find()
nf_osf_find() incorrectly returns true on mismatch, this leads to
copying uninitialized memory area in nft_osf which can be used to leak
stale kernel stack data to userspace.
CVSS
No CVSS.
References
Configurations
No configuration.
History
28 Apr 2024, 13:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-04-28 13:15
Updated : 2024-04-29 12:42
NVD link : CVE-2022-48654
Mitre link : CVE-2022-48654
CVE.ORG link : CVE-2022-48654
JSON object : View
Products Affected
No product.
CWE
No CWE.