CVE-2022-49770

ceph: avoid putting the realm twice when decoding snaps fails

Severity Score

7.1

*CVSS v3

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

In the Linux kernel, the following vulnerability has been resolved: ceph: avoid putting the realm twice when decoding snaps fails When decoding the snaps fails it maybe leaving the 'first_realm'
and 'realm' pointing to the same snaprealm memory. And then it'll
put it twice and could cause random use-after-free, BUG_ON, etc
issues.

In the Linux kernel, the following vulnerability has been resolved: ceph: avoid putting the realm twice when decoding snaps fails When decoding the snaps fails it maybe leaving the 'first_realm' and 'realm' pointing to the same snaprealm memory. And then it'll put it twice and could cause random use-after-free, BUG_ON, etc issues.

*Credits: N/A

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

None

Availability

High

Attack Vector

Network

Attack Complexity

Low

Authentication

None

Confidentiality

Partial

Integrity

None

Availability

Partial

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2025-04-16 CVE Reserved
2025-05-01 CVE Published
2025-05-01 CVE Updated
2025-05-02 EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CAPEC

References (6)

URL	Tag	Source

URL	Date	SRC

URL	Date	SRC
https://git.kernel.org/stable/c/274e4c79a3a2a24fba7cfe0e41113f1138785c37	2022-12-08
https://git.kernel.org/stable/c/cb7495fe957526555782ce0723f79ce92a6db22e	2022-12-08
https://git.kernel.org/stable/c/044bc6d3c2c0e9090b0841e7b723875756534b45	2022-12-02
https://git.kernel.org/stable/c/2f6e2de3a5289004650118b61f138fe7c28e1905	2022-12-02
https://git.kernel.org/stable/c/fd879c83e87735ab8f00ef7755752cf0cbae24b2	2022-11-26
https://git.kernel.org/stable/c/51884d153f7ec85e18d607b2467820a90e0f4359	2022-11-14

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				< 4.19.268 Search vendor "Linux" for product "Linux Kernel" and version " < 4.19.268"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				< 5.4.226 Search vendor "Linux" for product "Linux Kernel" and version " < 5.4.226"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				< 5.10.157 Search vendor "Linux" for product "Linux Kernel" and version " < 5.10.157"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				< 5.15.81 Search vendor "Linux" for product "Linux Kernel" and version " < 5.15.81"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				< 6.0.10 Search vendor "Linux" for product "Linux Kernel" and version " < 6.0.10"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				< 6.1 Search vendor "Linux" for product "Linux Kernel" and version " < 6.1"		en		Affected