Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
NA

CVE-2022-48654

Published: 28/04/2024 Updated: 29/04/2024

Vulnerability Summary

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlink_osf: fix possible bogus match in nf_osf_find() nf_osf_find() incorrectly returns true on mismatch, this leads to copying uninitialized memory area in nft_osf which can be used to leak stale kernel stack data to userspace.

References

https://git.kernel.org/stable/c/721ea8ac063d70c2078c4e762212705de6151764https://git.kernel.org/stable/c/5d75fef3e61e797fab5c3fbba88caa74ab92ad47https://git.kernel.org/stable/c/816eab147e5c6f6621922b8515ad9010ceb1735ehttps://git.kernel.org/stable/c/633c81c0449663f57d4138326d036dc6cfad674ehttps://git.kernel.org/stable/c/559c36c5a8d730c49ef805a72b213d3bba155cc8https://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
man-in-the-middleCVE-2024-34558CVE-2024-32674CVE-2024-34351XPath injectionCVE-2023-45866CVE-2024-25528CVE-2024-25517path traversal
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook