An issue was discovered in the Linux kernel through 6.0.6. drivers/char/pcmcia/cm4000_cs.c has a race condition and resultant use-after-free if a physically proximate attacker removes a PCMCIA device while calling open(), aka a race condition between cmm_open() and cm4000_detach().
References
Configurations
History
25 Mar 2024, 01:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
07 Nov 2023, 03:54
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
01 Nov 2022, 14:45
Type | Values Removed | Values Added |
---|---|---|
First Time |
Linux
Linux linux Kernel |
|
CPE | cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | |
CWE | CWE-362 | |
References | (MISC) https://lore.kernel.org/lkml/20220919040701.GA302806@ubuntu/ - Mailing List, Patch, Vendor Advisory | |
References | (MISC) https://lore.kernel.org/lkml/20220915020834.GA110086@ubuntu/ - Mailing List, Patch, Vendor Advisory | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 6.4 |
30 Oct 2022, 01:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-10-30 01:15
Updated : 2024-03-25 01:15
NVD link : CVE-2022-44032
Mitre link : CVE-2022-44032
CVE.ORG link : CVE-2022-44032
JSON object : View
Products Affected
linux
- linux_kernel
CWE
CWE-362
Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')