A memory leak flaw was found in the Linux kernel’s DMA subsystem, in the way a user calls DMA_FROM_DEVICE. This flaw allows a local user to read random memory from the kernel space.
References
Link | Resource |
---|---|
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/kernel/dma/swiotlb.c?h=v5.17-rc8&id=aa6f8dcbab473f3a3c7454b74caa46d36cdc5d13 | Exploit Mailing List Third Party Advisory |
https://lists.debian.org/debian-lts-announce/2022/07/msg00000.html | Mailing List Third Party Advisory |
https://www.debian.org/security/2022/dsa-5161 | Third Party Advisory |
https://www.debian.org/security/2022/dsa-5173 | Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: redhat
Published: 2022-03-23T19:46:15
Updated: 2022-07-04T10:11:26
Reserved: 2022-03-04T00:00:00
Link: CVE-2022-0854
JSON object: View
NVD Information
Status : Analyzed
Published: 2022-03-23T20:15:10.423
Modified: 2022-10-14T12:53:58.807
Link: CVE-2022-0854
JSON object: View
Redhat Information
No data.