CVE-2022-48886

Summary

In the Linux kernel, the following vulnerability has been resolved:

ice: Add check for kzalloc

Add the check for the return value of kzalloc in order to avoid NULL pointer dereference. Moreover, use the goto-label to share the clean code.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxd6b98c8d242aee40e7b8919dd07b593b0739e38d < 96a9873188552ebb2afe76033d7329a5ecabef6eaffected
LinuxLinuxd6b98c8d242aee40e7b8919dd07b593b0739e38d < 40543b3d9d2c13227ecd3aa90a713c201d1d7f09affected
LinuxLinux6.0affected
LinuxLinux0 < 6.0unaffected
LinuxLinux6.1.7 <= 6.1.*unaffected
LinuxLinux6.2 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References