CVE-2022-50256 (GCVE-0-2022-50256)

Vulnerability from cvelistv5 – Published: 2025-09-15 14:02 – Updated: 2026-05-11 19:15
VLAI?
Title
drm/meson: remove drm bridges at aggregate driver unbind time
Summary
In the Linux kernel, the following vulnerability has been resolved: drm/meson: remove drm bridges at aggregate driver unbind time drm bridges added by meson_encoder_hdmi_init and meson_encoder_cvbs_init were not manually removed at module unload time, which caused dangling references to freed memory to remain linked in the global bridge_list. When loading the driver modules back in, the same functions would again call drm_bridge_add, and when traversing the global bridge_list, would end up peeking into freed memory. Once again KASAN revealed the problem: [ +0.000095] ============================================================= [ +0.000008] BUG: KASAN: use-after-free in __list_add_valid+0x9c/0x120 [ +0.000018] Read of size 8 at addr ffff00003da291f0 by task modprobe/2483 [ +0.000018] CPU: 3 PID: 2483 Comm: modprobe Tainted: G C O 5.19.0-rc6-lrmbkasan+ #1 [ +0.000011] Hardware name: Hardkernel ODROID-N2Plus (DT) [ +0.000008] Call trace: [ +0.000006] dump_backtrace+0x1ec/0x280 [ +0.000012] show_stack+0x24/0x80 [ +0.000008] dump_stack_lvl+0x98/0xd4 [ +0.000011] print_address_description.constprop.0+0x80/0x520 [ +0.000011] print_report+0x128/0x260 [ +0.000008] kasan_report+0xb8/0xfc [ +0.000008] __asan_report_load8_noabort+0x3c/0x50 [ +0.000009] __list_add_valid+0x9c/0x120 [ +0.000009] drm_bridge_add+0x6c/0x104 [drm] [ +0.000165] dw_hdmi_probe+0x1900/0x2360 [dw_hdmi] [ +0.000022] meson_dw_hdmi_bind+0x520/0x814 [meson_dw_hdmi] [ +0.000014] component_bind+0x174/0x520 [ +0.000012] component_bind_all+0x1a8/0x38c [ +0.000010] meson_drv_bind_master+0x5e8/0xb74 [meson_drm] [ +0.000032] meson_drv_bind+0x20/0x2c [meson_drm] [ +0.000027] try_to_bring_up_aggregate_device+0x19c/0x390 [ +0.000010] component_master_add_with_match+0x1c8/0x284 [ +0.000009] meson_drv_probe+0x274/0x280 [meson_drm] [ +0.000026] platform_probe+0xd0/0x220 [ +0.000009] really_probe+0x3ac/0xa80 [ +0.000009] __driver_probe_device+0x1f8/0x400 [ +0.000009] driver_probe_device+0x68/0x1b0 [ +0.000009] __driver_attach+0x20c/0x480 [ +0.000008] bus_for_each_dev+0x114/0x1b0 [ +0.000009] driver_attach+0x48/0x64 [ +0.000008] bus_add_driver+0x390/0x564 [ +0.000009] driver_register+0x1a8/0x3e4 [ +0.000009] __platform_driver_register+0x6c/0x94 [ +0.000008] meson_drm_platform_driver_init+0x3c/0x1000 [meson_drm] [ +0.000027] do_one_initcall+0xc4/0x2b0 [ +0.000011] do_init_module+0x154/0x570 [ +0.000011] load_module+0x1a78/0x1ea4 [ +0.000008] __do_sys_init_module+0x184/0x1cc [ +0.000009] __arm64_sys_init_module+0x78/0xb0 [ +0.000009] invoke_syscall+0x74/0x260 [ +0.000009] el0_svc_common.constprop.0+0xcc/0x260 [ +0.000008] do_el0_svc+0x50/0x70 [ +0.000007] el0_svc+0x68/0x1a0 [ +0.000012] el0t_64_sync_handler+0x11c/0x150 [ +0.000008] el0t_64_sync+0x18c/0x190 [ +0.000016] Allocated by task 879: [ +0.000008] kasan_save_stack+0x2c/0x5c [ +0.000011] __kasan_kmalloc+0x90/0xd0 [ +0.000007] __kmalloc+0x278/0x4a0 [ +0.000011] mpi_resize+0x13c/0x1d0 [ +0.000011] mpi_powm+0xd24/0x1570 [ +0.000009] rsa_enc+0x1a4/0x30c [ +0.000009] pkcs1pad_verify+0x3f0/0x580 [ +0.000009] public_key_verify_signature+0x7a8/0xba4 [ +0.000010] public_key_verify_signature_2+0x40/0x60 [ +0.000008] verify_signature+0xb4/0x114 [ +0.000008] pkcs7_validate_trust_one.constprop.0+0x3b8/0x574 [ +0.000009] pkcs7_validate_trust+0xb8/0x15c [ +0.000008] verify_pkcs7_message_sig+0xec/0x1b0 [ +0.000012] verify_pkcs7_signature+0x78/0xac [ +0.000007] mod_verify_sig+0x110/0x190 [ +0.000009] module_sig_check+0x114/0x1e0 [ +0.000009] load_module+0xa0/0x1ea4 [ +0.000008] __do_sys_init_module+0x184/0x1cc [ +0.000008] __arm64_sys_init_module+0x78/0xb0 [ +0.000008] invoke_syscall+0x74/0x260 [ +0.000009] el0_svc_common.constprop.0+0x1a8/0x260 [ +0.000008] do_el0_svc+0x50/0x70 [ +0.000007] el0_svc+0x68/0x1a0 [ +0.000009] el0t_64_sync_handler+0x11c/0x150 [ +0.000009] el0t_64 ---truncated---
Severity ?
No CVSS data available.
Assigner
References
Impacted products
Vendor Product Version
Linux Linux Affected: bbbe775ec5b5dace43a35886da9924837da09ddd , < de2b6ebe0cb7746b5b6b35d79e150d934392b958 (git)
Affected: bbbe775ec5b5dace43a35886da9924837da09ddd , < fc1fd114dde3d2623ac37676df3d74ffeedb0da8 (git)
Affected: bbbe775ec5b5dace43a35886da9924837da09ddd , < 09847723c12fc2753749cec3939a02ee92dac468 (git)
Create a notification for this product.
Linux Linux Affected: 4.10
Unaffected: 0 , < 4.10 (semver)
Unaffected: 5.19.17 , ≤ 5.19.* (semver)
Unaffected: 6.0.3 , ≤ 6.0.* (semver)
Unaffected: 6.1 , ≤ * (original_commit_for_fix)
Create a notification for this product.
Show details on NVD website
To clipboard 

{
  "containers": {
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/gpu/drm/meson/meson_drv.c",
            "drivers/gpu/drm/meson/meson_drv.h",
            "drivers/gpu/drm/meson/meson_encoder_cvbs.c",
            "drivers/gpu/drm/meson/meson_encoder_cvbs.h",
            "drivers/gpu/drm/meson/meson_encoder_hdmi.c",
            "drivers/gpu/drm/meson/meson_encoder_hdmi.h"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "de2b6ebe0cb7746b5b6b35d79e150d934392b958",
              "status": "affected",
              "version": "bbbe775ec5b5dace43a35886da9924837da09ddd",
              "versionType": "git"
            },
            {
              "lessThan": "fc1fd114dde3d2623ac37676df3d74ffeedb0da8",
              "status": "affected",
              "version": "bbbe775ec5b5dace43a35886da9924837da09ddd",
              "versionType": "git"
            },
            {
              "lessThan": "09847723c12fc2753749cec3939a02ee92dac468",
              "status": "affected",
              "version": "bbbe775ec5b5dace43a35886da9924837da09ddd",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/gpu/drm/meson/meson_drv.c",
            "drivers/gpu/drm/meson/meson_drv.h",
            "drivers/gpu/drm/meson/meson_encoder_cvbs.c",
            "drivers/gpu/drm/meson/meson_encoder_cvbs.h",
            "drivers/gpu/drm/meson/meson_encoder_hdmi.c",
            "drivers/gpu/drm/meson/meson_encoder_hdmi.h"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "4.10"
            },
            {
              "lessThan": "4.10",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.19.*",
              "status": "unaffected",
              "version": "5.19.17",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.0.*",
              "status": "unaffected",
              "version": "6.0.3",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.1",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.19.17",
                  "versionStartIncluding": "4.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.0.3",
                  "versionStartIncluding": "4.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1",
                  "versionStartIncluding": "4.10",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/meson: remove drm bridges at aggregate driver unbind time\n\ndrm bridges added by meson_encoder_hdmi_init and meson_encoder_cvbs_init\nwere not manually removed at module unload time, which caused dangling\nreferences to freed memory to remain linked in the global bridge_list.\n\nWhen loading the driver modules back in, the same functions would again\ncall drm_bridge_add, and when traversing the global bridge_list, would\nend up peeking into freed memory.\n\nOnce again KASAN revealed the problem:\n\n[  +0.000095] =============================================================\n[  +0.000008] BUG: KASAN: use-after-free in __list_add_valid+0x9c/0x120\n[  +0.000018] Read of size 8 at addr ffff00003da291f0 by task modprobe/2483\n\n[  +0.000018] CPU: 3 PID: 2483 Comm: modprobe Tainted: G         C O      5.19.0-rc6-lrmbkasan+ #1\n[  +0.000011] Hardware name: Hardkernel ODROID-N2Plus (DT)\n[  +0.000008] Call trace:\n[  +0.000006]  dump_backtrace+0x1ec/0x280\n[  +0.000012]  show_stack+0x24/0x80\n[  +0.000008]  dump_stack_lvl+0x98/0xd4\n[  +0.000011]  print_address_description.constprop.0+0x80/0x520\n[  +0.000011]  print_report+0x128/0x260\n[  +0.000008]  kasan_report+0xb8/0xfc\n[  +0.000008]  __asan_report_load8_noabort+0x3c/0x50\n[  +0.000009]  __list_add_valid+0x9c/0x120\n[  +0.000009]  drm_bridge_add+0x6c/0x104 [drm]\n[  +0.000165]  dw_hdmi_probe+0x1900/0x2360 [dw_hdmi]\n[  +0.000022]  meson_dw_hdmi_bind+0x520/0x814 [meson_dw_hdmi]\n[  +0.000014]  component_bind+0x174/0x520\n[  +0.000012]  component_bind_all+0x1a8/0x38c\n[  +0.000010]  meson_drv_bind_master+0x5e8/0xb74 [meson_drm]\n[  +0.000032]  meson_drv_bind+0x20/0x2c [meson_drm]\n[  +0.000027]  try_to_bring_up_aggregate_device+0x19c/0x390\n[  +0.000010]  component_master_add_with_match+0x1c8/0x284\n[  +0.000009]  meson_drv_probe+0x274/0x280 [meson_drm]\n[  +0.000026]  platform_probe+0xd0/0x220\n[  +0.000009]  really_probe+0x3ac/0xa80\n[  +0.000009]  __driver_probe_device+0x1f8/0x400\n[  +0.000009]  driver_probe_device+0x68/0x1b0\n[  +0.000009]  __driver_attach+0x20c/0x480\n[  +0.000008]  bus_for_each_dev+0x114/0x1b0\n[  +0.000009]  driver_attach+0x48/0x64\n[  +0.000008]  bus_add_driver+0x390/0x564\n[  +0.000009]  driver_register+0x1a8/0x3e4\n[  +0.000009]  __platform_driver_register+0x6c/0x94\n[  +0.000008]  meson_drm_platform_driver_init+0x3c/0x1000 [meson_drm]\n[  +0.000027]  do_one_initcall+0xc4/0x2b0\n[  +0.000011]  do_init_module+0x154/0x570\n[  +0.000011]  load_module+0x1a78/0x1ea4\n[  +0.000008]  __do_sys_init_module+0x184/0x1cc\n[  +0.000009]  __arm64_sys_init_module+0x78/0xb0\n[  +0.000009]  invoke_syscall+0x74/0x260\n[  +0.000009]  el0_svc_common.constprop.0+0xcc/0x260\n[  +0.000008]  do_el0_svc+0x50/0x70\n[  +0.000007]  el0_svc+0x68/0x1a0\n[  +0.000012]  el0t_64_sync_handler+0x11c/0x150\n[  +0.000008]  el0t_64_sync+0x18c/0x190\n\n[  +0.000016] Allocated by task 879:\n[  +0.000008]  kasan_save_stack+0x2c/0x5c\n[  +0.000011]  __kasan_kmalloc+0x90/0xd0\n[  +0.000007]  __kmalloc+0x278/0x4a0\n[  +0.000011]  mpi_resize+0x13c/0x1d0\n[  +0.000011]  mpi_powm+0xd24/0x1570\n[  +0.000009]  rsa_enc+0x1a4/0x30c\n[  +0.000009]  pkcs1pad_verify+0x3f0/0x580\n[  +0.000009]  public_key_verify_signature+0x7a8/0xba4\n[  +0.000010]  public_key_verify_signature_2+0x40/0x60\n[  +0.000008]  verify_signature+0xb4/0x114\n[  +0.000008]  pkcs7_validate_trust_one.constprop.0+0x3b8/0x574\n[  +0.000009]  pkcs7_validate_trust+0xb8/0x15c\n[  +0.000008]  verify_pkcs7_message_sig+0xec/0x1b0\n[  +0.000012]  verify_pkcs7_signature+0x78/0xac\n[  +0.000007]  mod_verify_sig+0x110/0x190\n[  +0.000009]  module_sig_check+0x114/0x1e0\n[  +0.000009]  load_module+0xa0/0x1ea4\n[  +0.000008]  __do_sys_init_module+0x184/0x1cc\n[  +0.000008]  __arm64_sys_init_module+0x78/0xb0\n[  +0.000008]  invoke_syscall+0x74/0x260\n[  +0.000009]  el0_svc_common.constprop.0+0x1a8/0x260\n[  +0.000008]  do_el0_svc+0x50/0x70\n[  +0.000007]  el0_svc+0x68/0x1a0\n[  +0.000009]  el0t_64_sync_handler+0x11c/0x150\n[  +0.000009]  el0t_64\n---truncated---"
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-05-11T19:15:48.068Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/de2b6ebe0cb7746b5b6b35d79e150d934392b958"
        },
        {
          "url": "https://git.kernel.org/stable/c/fc1fd114dde3d2623ac37676df3d74ffeedb0da8"
        },
        {
          "url": "https://git.kernel.org/stable/c/09847723c12fc2753749cec3939a02ee92dac468"
        }
      ],
      "title": "drm/meson: remove drm bridges at aggregate driver unbind time",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2022-50256",
    "datePublished": "2025-09-15T14:02:39.052Z",
    "dateReserved": "2025-09-15T13:58:00.973Z",
    "dateUpdated": "2026-05-11T19:15:48.068Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2",
  "vulnerability-lookup:meta": {
    "epss": {
      "cve": "CVE-2022-50256",
      "date": "2026-05-19",
      "epss": "0.00014",
      "percentile": "0.02687"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2022-50256\",\"sourceIdentifier\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"published\":\"2025-09-15T14:15:36.363\",\"lastModified\":\"2025-11-25T16:52:25.453\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"In the Linux kernel, the following vulnerability has been resolved:\\n\\ndrm/meson: remove drm bridges at aggregate driver unbind time\\n\\ndrm bridges added by meson_encoder_hdmi_init and meson_encoder_cvbs_init\\nwere not manually removed at module unload time, which caused dangling\\nreferences to freed memory to remain linked in the global bridge_list.\\n\\nWhen loading the driver modules back in, the same functions would again\\ncall drm_bridge_add, and when traversing the global bridge_list, would\\nend up peeking into freed memory.\\n\\nOnce again KASAN revealed the problem:\\n\\n[  +0.000095] =============================================================\\n[  +0.000008] BUG: KASAN: use-after-free in __list_add_valid+0x9c/0x120\\n[  +0.000018] Read of size 8 at addr ffff00003da291f0 by task modprobe/2483\\n\\n[  +0.000018] CPU: 3 PID: 2483 Comm: modprobe Tainted: G         C O      5.19.0-rc6-lrmbkasan+ #1\\n[  +0.000011] Hardware name: Hardkernel ODROID-N2Plus (DT)\\n[  +0.000008] Call trace:\\n[  +0.000006]  dump_backtrace+0x1ec/0x280\\n[  +0.000012]  show_stack+0x24/0x80\\n[  +0.000008]  dump_stack_lvl+0x98/0xd4\\n[  +0.000011]  print_address_description.constprop.0+0x80/0x520\\n[  +0.000011]  print_report+0x128/0x260\\n[  +0.000008]  kasan_report+0xb8/0xfc\\n[  +0.000008]  __asan_report_load8_noabort+0x3c/0x50\\n[  +0.000009]  __list_add_valid+0x9c/0x120\\n[  +0.000009]  drm_bridge_add+0x6c/0x104 [drm]\\n[  +0.000165]  dw_hdmi_probe+0x1900/0x2360 [dw_hdmi]\\n[  +0.000022]  meson_dw_hdmi_bind+0x520/0x814 [meson_dw_hdmi]\\n[  +0.000014]  component_bind+0x174/0x520\\n[  +0.000012]  component_bind_all+0x1a8/0x38c\\n[  +0.000010]  meson_drv_bind_master+0x5e8/0xb74 [meson_drm]\\n[  +0.000032]  meson_drv_bind+0x20/0x2c [meson_drm]\\n[  +0.000027]  try_to_bring_up_aggregate_device+0x19c/0x390\\n[  +0.000010]  component_master_add_with_match+0x1c8/0x284\\n[  +0.000009]  meson_drv_probe+0x274/0x280 [meson_drm]\\n[  +0.000026]  platform_probe+0xd0/0x220\\n[  +0.000009]  really_probe+0x3ac/0xa80\\n[  +0.000009]  __driver_probe_device+0x1f8/0x400\\n[  +0.000009]  driver_probe_device+0x68/0x1b0\\n[  +0.000009]  __driver_attach+0x20c/0x480\\n[  +0.000008]  bus_for_each_dev+0x114/0x1b0\\n[  +0.000009]  driver_attach+0x48/0x64\\n[  +0.000008]  bus_add_driver+0x390/0x564\\n[  +0.000009]  driver_register+0x1a8/0x3e4\\n[  +0.000009]  __platform_driver_register+0x6c/0x94\\n[  +0.000008]  meson_drm_platform_driver_init+0x3c/0x1000 [meson_drm]\\n[  +0.000027]  do_one_initcall+0xc4/0x2b0\\n[  +0.000011]  do_init_module+0x154/0x570\\n[  +0.000011]  load_module+0x1a78/0x1ea4\\n[  +0.000008]  __do_sys_init_module+0x184/0x1cc\\n[  +0.000009]  __arm64_sys_init_module+0x78/0xb0\\n[  +0.000009]  invoke_syscall+0x74/0x260\\n[  +0.000009]  el0_svc_common.constprop.0+0xcc/0x260\\n[  +0.000008]  do_el0_svc+0x50/0x70\\n[  +0.000007]  el0_svc+0x68/0x1a0\\n[  +0.000012]  el0t_64_sync_handler+0x11c/0x150\\n[  +0.000008]  el0t_64_sync+0x18c/0x190\\n\\n[  +0.000016] Allocated by task 879:\\n[  +0.000008]  kasan_save_stack+0x2c/0x5c\\n[  +0.000011]  __kasan_kmalloc+0x90/0xd0\\n[  +0.000007]  __kmalloc+0x278/0x4a0\\n[  +0.000011]  mpi_resize+0x13c/0x1d0\\n[  +0.000011]  mpi_powm+0xd24/0x1570\\n[  +0.000009]  rsa_enc+0x1a4/0x30c\\n[  +0.000009]  pkcs1pad_verify+0x3f0/0x580\\n[  +0.000009]  public_key_verify_signature+0x7a8/0xba4\\n[  +0.000010]  public_key_verify_signature_2+0x40/0x60\\n[  +0.000008]  verify_signature+0xb4/0x114\\n[  +0.000008]  pkcs7_validate_trust_one.constprop.0+0x3b8/0x574\\n[  +0.000009]  pkcs7_validate_trust+0xb8/0x15c\\n[  +0.000008]  verify_pkcs7_message_sig+0xec/0x1b0\\n[  +0.000012]  verify_pkcs7_signature+0x78/0xac\\n[  +0.000007]  mod_verify_sig+0x110/0x190\\n[  +0.000009]  module_sig_check+0x114/0x1e0\\n[  +0.000009]  load_module+0xa0/0x1ea4\\n[  +0.000008]  __do_sys_init_module+0x184/0x1cc\\n[  +0.000008]  __arm64_sys_init_module+0x78/0xb0\\n[  +0.000008]  invoke_syscall+0x74/0x260\\n[  +0.000009]  el0_svc_common.constprop.0+0x1a8/0x260\\n[  +0.000008]  do_el0_svc+0x50/0x70\\n[  +0.000007]  el0_svc+0x68/0x1a0\\n[  +0.000009]  el0t_64_sync_handler+0x11c/0x150\\n[  +0.000009]  el0t_64\\n---truncated---\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":7.8,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.8,\"impactScore\":5.9}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-416\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.10\",\"versionEndExcluding\":\"5.19.17\",\"matchCriteriaId\":\"6D9E41A0-73E6-47EF-B833-DBA6045CECFB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"6.0\",\"versionEndExcluding\":\"6.0.3\",\"matchCriteriaId\":\"5BCD8201-B847-4442-B894-70D430128DEF\"}]}]}],\"references\":[{\"url\":\"https://git.kernel.org/stable/c/09847723c12fc2753749cec3939a02ee92dac468\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/de2b6ebe0cb7746b5b6b35d79e150d934392b958\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/fc1fd114dde3d2623ac37676df3d74ffeedb0da8\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]}]}}"
  }
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.

Sightings

Author Source Type Date Other

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.



Detection rules are retrieved from Rulezet.