In the Linux kernel, the following vulnerability has been resolved:
firmware: arm_scmi: Harden accesses to the reset domains
Accessing reset domains descriptors by the index upon the SCMI drivers
requests through the SCMI reset operations interface can potentially
lead to out-of-bound violations if the SCMI driver misbehave.
Add an internal consistency check before any such domains descriptors
accesses.
References
Configurations
Configuration 1 (hide)
|
History
30 Apr 2024, 15:25
Type | Values Removed | Values Added |
---|---|---|
References | () https://git.kernel.org/stable/c/1f08a1b26cfc53b7715abc46857c6023bb1b87de - Patch | |
References | () https://git.kernel.org/stable/c/8e65edf0d37698f7a6cb174608d3ec7976baf49e - Patch | |
References | () https://git.kernel.org/stable/c/e9076ffbcaed5da6c182b144ef9f6e24554af268 - Patch | |
CPE | cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.8 |
CWE | CWE-119 | |
First Time |
Linux linux Kernel
Linux |
28 Apr 2024, 13:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-04-28 13:15
Updated : 2024-04-30 15:25
NVD link : CVE-2022-48655
Mitre link : CVE-2022-48655
CVE.ORG link : CVE-2022-48655
JSON object : View
Products Affected
linux
- linux_kernel
CWE
CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer