CVE-2022-48787

iwlwifi: fix use-after-free

Severity Score

"-"

*CVSS v-

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

Track

*SSVC

Descriptions

In the Linux kernel, the following vulnerability has been resolved:

iwlwifi: fix use-after-free

If no firmware was present at all (or, presumably, all of the
firmware files failed to parse), we end up unbinding by calling
device_release_driver(), which calls remove(), which then in
iwlwifi calls iwl_drv_stop(), freeing the 'drv' struct. However
the new code I added will still erroneously access it after it
was freed.

Set 'failure=false' in this case to avoid the access, all data
was already freed anyway.

*Credits: N/A

CVSS Scores

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality

Integrity

Availability

* Common Vulnerability Scoring System

SSVC

Decision:Track

Exploitation

None

Automatable

Tech. Impact

Partial

* Organization's Worst-case Scenario

Timeline

2024-07-16 CVE Reserved
2024-07-16 CVE Published
2024-08-08 EPSS Updated
2024-11-04 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CAPEC

References (13)

URL	Tag	Source
https://git.kernel.org/stable/c/8e10749fa1a454c1e7214f36cec83241f5a36ef1	Vuln. Introduced
https://git.kernel.org/stable/c/1d7cc54137a4f28506dc7beac235b240b08f4e59	Vuln. Introduced
https://git.kernel.org/stable/c/0446cafa843e6db4982731c167e11c80d42be7e2	Vuln. Introduced
https://git.kernel.org/stable/c/febab6b60d61d13cd9f30a2991deea56df39567d	Vuln. Introduced
https://git.kernel.org/stable/c/e23f075d77987de4215c8e0696f28bcc707506f7	Vuln. Introduced
https://git.kernel.org/stable/c/6b5ad4bd0d78fef6bbe0ecdf96e09237c9c52cc1	Vuln. Introduced

URL	Date	SRC

URL	Date	SRC
https://git.kernel.org/stable/c/d3b98fe36f8a06ce654049540773256ab59cb53d	2022-02-23
https://git.kernel.org/stable/c/7d6475179b85a83186ccce59cdc359d4f07d0bcb	2022-02-23
https://git.kernel.org/stable/c/494de920d98f125b099f27a2d274850750aff957	2022-02-23
https://git.kernel.org/stable/c/008508c16af0087cda0394e1ac6f0493b01b6063	2022-02-23
https://git.kernel.org/stable/c/ddd46059f7d99119b62d44c519df7a79f2e6a515	2022-02-23
https://git.kernel.org/stable/c/9958b9cbb22145295ee1ffaea0904c383da2c05d	2022-02-23
https://git.kernel.org/stable/c/bea2662e7818e15d7607d17d57912ac984275d94	2022-02-10

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.14.263 < 4.14.268 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.14.263 < 4.14.268"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.19.226 < 4.19.231 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.19.226 < 4.19.231"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.4.174 < 5.4.181 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.4.174 < 5.4.181"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.10.94 < 5.10.102 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.10.94 < 5.10.102"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.15.17 < 5.15.25 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.15.17 < 5.15.25"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.16.3 < 5.16.11 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.16.3 < 5.16.11"		en		Affected