Published: 19/03/2023 Updated: 13/04/2023

CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8

VMScore: 0

In the Linux kernel up to and including 6.2.7, fs/ntfs3/inode.c has an invalid kfree because it does not validate MFT flags before replaying logs.

Vulnerable Product	Search on Vulmon	Subscribe to Product
linux linux kernel

In the Linux kernel through 627, fs/ntfs3/inodec has an invalid kfree because it does not validate MFT flags before replaying logs (CVE-2022-48425) A flaw was found in the Linux kernel's networking subsystem within the RPL protocol's handling This issue results from the improper handling of user-supplied data, which can lead to an assertion fa ...

DescriptionThe MITRE CVE dictionary describes this issue as: In the Linux kernel through 627, fs/ntfs3/inodec has an invalid kfree because it does not validate MFT flags before replaying logs ...

CWE-763 https://git.kernel.org/pub/scm/linux/kernel/git/next/linux-next.git/commit/fs/ntfs3?id=467333af2f7b95eeaa61a5b5369a80063cd971fd https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=467333af2f7b95eeaa61a5b5369a80063cd971fd https://security.netapp.com/advisory/ntap-20230413-0006/https://nvd.nist.gov https://alas.aws.amazon.com/AL2/ALASKERNEL-5.15-2023-021.html

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2022-48425

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect