CVE-2022-48905

ibmvnic: free reset-work-item when flushing

Severity Score

3.3

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

Track

*SSVC

Descriptions

NVD
RedHat

In the Linux kernel, the following vulnerability has been resolved:

ibmvnic: free reset-work-item when flushing

Fix a tiny memory leak when flushing the reset work queue.

A memory leak flaw was found in the Linux kernel’s IBM Virtual Network Interface Controller (ibmvnic ) driver. This issue involved not properly freeing memory associated with a reset work item when the reset work queue is flushed, causing the reset-work-item not to be deallocated. This flaw allows an attacker with control over the virtual NIC to repeatedly trigger interface resets to cause small amounts of memory to leak. Over time, this can lead to memory exhaustion, especially in systems already resource-constrained or under heavy load, resulting in a possible denial of service (DoS) condition.

*Credits: N/A

CVSS Scores

Red Hatv3.1 3.3

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

Low

* Common Vulnerability Scoring System

SSVC

Decision:Track

Exploitation

None

Automatable

Tech. Impact

Partial

* Organization's Worst-case Scenario

Timeline

2024-08-21 CVE Reserved
2024-08-22 CVE Published
2024-09-13 EPSS Updated
2024-11-04 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-401: Missing Release of Memory after Effective Lifetime

CAPEC

References (9)

URL	Tag	Source
https://git.kernel.org/stable/c/2770a7984db588913e11a6dfcfe3461dbba9b7b2	Vuln. Introduced

URL	Date	SRC

URL	Date	SRC
https://git.kernel.org/stable/c/786576c03b313a9ff6585458aa0dfd039d897f51	2022-03-08
https://git.kernel.org/stable/c/58b07100c20e95c78b8cb4d6d28ca53eb9ef81f2	2022-03-08
https://git.kernel.org/stable/c/6acbc8875282d3ca8a73fa93cd7a9b166de5019c	2022-03-08
https://git.kernel.org/stable/c/39738a2346b270e8f72f88d8856de2c167bd2899	2022-03-08
https://git.kernel.org/stable/c/4c26745e4576cec224092e6cc12e37829333b183	2022-03-08
https://git.kernel.org/stable/c/8d0657f39f487d904fca713e0bc39c2707382553	2022-02-25

URL	Date	SRC
https://access.redhat.com/security/cve/CVE-2022-48905	2022-11-15
https://bugzilla.redhat.com/show_bug.cgi?id=2307158	2022-11-15

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.18 < 4.19.233 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.18 < 4.19.233"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.18 < 5.4.183 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.18 < 5.4.183"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.18 < 5.10.104 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.18 < 5.10.104"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.18 < 5.15.27 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.18 < 5.15.27"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.18 < 5.16.13 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.18 < 5.16.13"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 4.18 < 5.17 Search vendor "Linux" for product "Linux Kernel" and version " >= 4.18 < 5.17"		en		Affected