Kernel subsystem within OpenHarmony-v3.1.4 and prior versions in kernel_liteos_a has a kernel stack overflow vulnerability when call SysClockGetres. 4 bytes padding data from kernel stack are copied to user space incorrectly and leaked.
References
Link | Resource |
---|---|
https://gitee.com/openharmony/security/blob/master/en/security-disclosure/2022/2022-12.md | Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: OpenHarmony
Published: 2022-12-08T00:00:00
Updated: 2022-12-12T09:47:38.527824Z
Reserved: 2022-11-24T00:00:00
Link: CVE-2022-41802
JSON object: View
NVD Information
Status : Analyzed
Published: 2022-12-08T16:15:13.357
Modified: 2022-12-12T15:50:30.547
Link: CVE-2022-41802
JSON object: View
Redhat Information
No data.