VulDB Recent Entries

A vulnerability classified as critical has been found in Linux Kernel up to 5.10.153/5.15.77/6.0.7. This affects the function ftrace_shutdown of the file kernel/trace/ftrace.c of the component ftrace. The manipulation leads to use after free. This vulnerability is uniquely identified as CVE-2022-49892. The attack can only be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.0.7. It has been rated as critical. Affected by this issue is the function red_enqueue of the component net. The manipulation leads to use after free. This vulnerability is handled as CVE-2022-49921. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 5.15.77/6.0.7. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /sbin/ipset of the component netfilter. The manipulation leads to allocation of resources. This vulnerability is known as CVE-2022-49911. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 5.15.77/6.0.7. It has been classified as critical. Affected is the function smc_init. The manipulation leads to memory corruption. This vulnerability is traded as CVE-2022-49905. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.0.7 and classified as critical. This issue affects the function devm_cxl_add_region. The manipulation leads to null pointer dereference. The identification of this vulnerability is CVE-2022-49894. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Linux Kernel up to 6.0.7 and classified as critical. This vulnerability affects the function l2cap_conn_del of the component Bluetooth. The manipulation leads to improper update of reference count. This vulnerability was named CVE-2022-49909. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, was found in Linux Kernel up to 5.15.77/6.0.7. This affects the function tree_mod_log_rewind of the file fs/btrfs/tree-mod-log.c. The manipulation leads to allocation of resources. This vulnerability is uniquely identified as CVE-2022-49898. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in Linux Kernel up to 6.0.7. Affected by this issue is the function rose_send_frame of the component rose. The manipulation leads to null pointer dereference. This vulnerability is handled as CVE-2022-49916. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical was found in Linux Kernel up to 5.15.77/6.0.7. Affected by this vulnerability is an unknown functionality of the component ibmvnic. The manipulation leads to memory leak. This vulnerability is known as CVE-2022-49906. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as problematic has been found in Linux Kernel up to 6.0.8 on CAP_TO_MASK. Affected is an unknown function of the file security/commoncap.c. The manipulation leads to out-of-bounds read. This vulnerability is traded as CVE-2022-49870. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 5.15.78/6.0.8. It has been rated as critical. This issue affects the function free_netdev. The manipulation leads to memory leak. The identification of this vulnerability is CVE-2022-49867. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 5.15.78/6.0.8. It has been declared as critical. This vulnerability affects the function free_netdev. The manipulation leads to memory leak. This vulnerability was named CVE-2022-49866. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 5.15.78/6.0.8. It has been classified as critical. This affects the function svm_migrate_to_ram. The manipulation leads to null pointer dereference. This vulnerability is uniquely identified as CVE-2022-49864. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 5.4.224/5.10.154/5.15.78/6.0.8 and classified as critical. Affected by this issue is the function can_rx_register of the component can. The manipulation leads to null pointer dereference. This vulnerability is handled as CVE-2022-49863. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Linux Kernel up to 5.15.78/6.0.8 and classified as critical. Affected by this vulnerability is the function device_register of the component dmaengine. The manipulation leads to memory leak. This vulnerability is known as CVE-2022-49860. The attack can only be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, was found in Linux Kernel up to 5.15.78/6.0.8. Affected is the function lapbeth_open of the file net/core/dev.c of the component net. The manipulation leads to stack-based buffer overflow. This vulnerability is traded as CVE-2022-49859. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in Linux Kernel up to 5.10.154/5.15.78/6.0.8. This issue affects the function prestera_rxtx_switch_init of the component net. The manipulation leads to memory leak. The identification of this vulnerability is CVE-2022-49857. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical was found in Linux Kernel up to 5.15.78/6.0.8. This vulnerability affects the function ipc_pcie_read_bios_cfg of the component net. The manipulation leads to memory leak. This vulnerability was named CVE-2022-49855. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as problematic has been found in Linux Kernel up to 5.15.78/6.0.8. This affects the function dev_args_match_device of the file fs/btrfs/volumes.c of the component btrfs. The manipulation leads to reachable assertion. This vulnerability is uniquely identified as CVE-2022-49849. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.0.8. It has been rated as critical. Affected by this issue is the function am65_cpsw_nuss_phylink_cleanup of the component net. The manipulation leads to memory corruption. This vulnerability is handled as CVE-2022-49847. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.