CVE-2022-49182
7.8
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
In the Linux kernel, the following vulnerability has been resolved:
net: hns3: add vlan list lock to protect vlan list
When adding port base VLAN, vf VLAN need to remove from HW and modify the vlan state in vf VLAN list as false. If the periodicity task is freeing the same node, it may cause "use after free" error. This patch adds a vlan list lock to protect the vlan list.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | c6075b193462d9a3930fb41f587f94720658752a < 30f0ff7176efe8ac6c55f85bce26ed58bb608758 | affected |
| Linux | Linux | c6075b193462d9a3930fb41f587f94720658752a < 09e383ca97e798f9954189b741af54b5c51e7a97 | affected |
| Linux | Linux | c6075b193462d9a3930fb41f587f94720658752a < f58af41deeab0f45c9c80adf5f2de489ebbac3dd | affected |
| Linux | Linux | c6075b193462d9a3930fb41f587f94720658752a < 1932a624ab88ff407d1a1d567fe581faa15dc725 | affected |
| Linux | Linux | 5.1 | affected |
| Linux | Linux | 0 < 5.1 | unaffected |
| Linux | Linux | 5.15.33 <= 5.15.* | unaffected |
| Linux | Linux | 5.16.19 <= 5.16.* | unaffected |
| Linux | Linux | 5.17.2 <= 5.17.* | unaffected |
| Linux | Linux | 5.18 <= * | unaffected |
Weaknesses
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: total
References
- https://git.kernel.org/stable/c/30f0ff7176efe8ac6c55f85bce26ed58bb608758
- https://git.kernel.org/stable/c/09e383ca97e798f9954189b741af54b5c51e7a97
- https://git.kernel.org/stable/c/f58af41deeab0f45c9c80adf5f2de489ebbac3dd
- https://git.kernel.org/stable/c/1932a624ab88ff407d1a1d567fe581faa15dc725
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.