Huawei EulerOS: CVE-2022-48899: kernel security update

发布于3月6日3月6日

Members

Huawei EulerOS: CVE-2022-48899: kernel security update

Severity

CVSS

(AV:L/AC:M/Au:S/C:N/I:N/A:C)

Published

08/21/2024

Created

11/12/2024

Added

11/11/2024

Modified

01/30/2025

Description

In the Linux kernel, the following vulnerability has been resolved: drm/virtio: Fix GEM handle creation UAF Userspace can guess the handle value and try to race GEM object creation with handle close, resulting in a use-after-free if we dereference the object after dropping the handle's reference.For that reason, dropping the handle's reference must be done *after* we are done dereferencing the object.

Solution(s)

huawei-euleros-2_0_sp10-upgrade-kernel
huawei-euleros-2_0_sp10-upgrade-kernel-abi-stablelists
huawei-euleros-2_0_sp10-upgrade-kernel-tools
huawei-euleros-2_0_sp10-upgrade-kernel-tools-libs
huawei-euleros-2_0_sp10-upgrade-python3-perf

References

https://attackerkb.com/topics/cve-2022-48899
CVE - 2022-48899
EulerOS-SA-2024-2888

引用

Mention

登录

Huawei EulerOS: CVE-2022-48899: kernel security update

recommended_posts

Huawei EulerOS: CVE-2022-48899: kernel security update

Description

Solution(s)

References

参与讨论

欢迎来到红帽社区

帐户

导航

搜索