CVE-2022-48787
iwlwifi: fix use-after-free
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
In the Linux kernel, the following vulnerability has been resolved: iwlwifi: fix use-after-free If no firmware was present at all (or, presumably, all of the
firmware files failed to parse), we end up unbinding by calling
device_release_driver(), which calls remove(), which then in
iwlwifi calls iwl_drv_stop(), freeing the 'drv' struct. However
the new code I added will still erroneously access it after it
was freed. Set 'failure=false' in this case to avoid the access, all data
was already freed anyway.
In the Linux kernel, the following vulnerability has been resolved: iwlwifi: fix use-after-free If no firmware was present at all (or, presumably, all of the firmware files failed to parse), we end up unbinding by calling device_release_driver(), which calls remove(), which then in iwlwifi calls iwl_drv_stop(), freeing the 'drv' struct. However the new code I added will still erroneously access it after it was freed. Set 'failure=false' in this case to avoid the access, all data was already freed anyway.
CVSS Scores
SSVC
- Decision:Track
Timeline
- 2024-07-16 CVE Reserved
- 2024-07-16 CVE Published
- 2024-12-19 CVE Updated
- 2025-03-29 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
CAPEC
References (13)
| URL | Tag | Source |
|---|---|---|
| https://git.kernel.org/stable/c/8e10749fa1a454c1e7214f36cec83241f5a36ef1 | Vuln. Introduced | |
| https://git.kernel.org/stable/c/1d7cc54137a4f28506dc7beac235b240b08f4e59 | Vuln. Introduced | |
| https://git.kernel.org/stable/c/0446cafa843e6db4982731c167e11c80d42be7e2 | Vuln. Introduced | |
| https://git.kernel.org/stable/c/febab6b60d61d13cd9f30a2991deea56df39567d | Vuln. Introduced | |
| https://git.kernel.org/stable/c/e23f075d77987de4215c8e0696f28bcc707506f7 | Vuln. Introduced | |
| https://git.kernel.org/stable/c/6b5ad4bd0d78fef6bbe0ecdf96e09237c9c52cc1 | Vuln. Introduced |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Linux Search vendor "Linux" | Linux Kernel Search vendor "Linux" for product "Linux Kernel" | >= 4.14.263 < 4.14.268 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.14.263 < 4.14.268" | en |
Affected
| ||||||
| Linux Search vendor "Linux" | Linux Kernel Search vendor "Linux" for product "Linux Kernel" | >= 4.19.226 < 4.19.231 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.19.226 < 4.19.231" | en |
Affected
| ||||||
| Linux Search vendor "Linux" | Linux Kernel Search vendor "Linux" for product "Linux Kernel" | >= 5.4.174 < 5.4.181 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.4.174 < 5.4.181" | en |
Affected
| ||||||
| Linux Search vendor "Linux" | Linux Kernel Search vendor "Linux" for product "Linux Kernel" | >= 5.10.94 < 5.10.102 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.10.94 < 5.10.102" | en |
Affected
| ||||||
| Linux Search vendor "Linux" | Linux Kernel Search vendor "Linux" for product "Linux Kernel" | >= 5.15.17 < 5.15.25 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.15.17 < 5.15.25" | en |
Affected
| ||||||
| Linux Search vendor "Linux" | Linux Kernel Search vendor "Linux" for product "Linux Kernel" | >= 5.16.3 < 5.16.11 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.16.3 < 5.16.11" | en |
Affected
| ||||||