Closed witchcraze closed 1 month ago
- CVE-2022-47940
- Suggested Configuration
- OR
*cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* versions from (including) 5.15 up to (excluding) 5.15.145
*cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* versions from (including) 5.16 up to (excluding) 5.18.18
- Reference
- https://ubuntu.com/security/CVE-2022-47940
- https://www.kernel.org/pub//linux/kernel/v5.x/ChangeLog-5.15.145
- https://www.kernel.org/pub//linux/kernel/v5.x/ChangeLog-5.18.18
- https://www.kernel.org/pub//linux/kernel/v5.x/ChangeLog-5.19
- Introduce
- https://www.kernel.org/pub//linux/kernel/v5.x/ChangeLog-5.15
- Reference (Commit)
- ksmbd: validate length in smb2_write()
- Fixed by
- 5.15.145 (6bb4399303383c2c06bce33f2335c39fbf35d979)
- 5.18.18 (61eb8b5368006fe0be0f6b1e2dff3ab284db256f)
- 5.19 (158a66b245739e15858de42c0ba60fcf3de9b8e6) (upstream)
- Will be introduced by
- 5.15 (e2f34481b24d)
- I Checked
- From ubuntu page
- Introduced by e2f34481b24db2fd634b5edb0a5bd0e4d38cc6e9 Fixed by 158a66b245739e15858de42c0ba60fcf3de9b8e6
- 158a66b245739e15858de42c0ba60fcf3de9b8e6 is written as upstream commit in each ChangeLog
- e2f34481b24db2fd634b5edb0a5bd0e4d38cc6e9 is written in ChangeLog-5.15
[CVE Configuration Update Request] Update Suggestion - CVE-2022-47940 - Cvss3 : 8.1
https://www.linuxkernelcves.com/cves/CVE-2022-47940 https://gitlab.com/cip-project/cip-kernel/cip-kernel-sec/-/blob/master/issues/CVE-2022-47940.yml https://github.com/witchcraze/NVD_CHECK/blob/main/kernel/CVE-2022-47940.json