CVE-2022-48860 - Vulnerability Details

Vendors	Products
Linux	Linux Kernel

Link	Providers
https://git.kernel.org/stable/c/1852854ee349881efb78ccdbbb237838975902e4
https://git.kernel.org/stable/c/5e7c402892e189a7bc152b125e72261154aa585d
https://git.kernel.org/stable/c/669172ce976608b25a2f76f3c65d47f042d125c9
https://git.kernel.org/stable/c/8609e29611befc4bfbe7a91bb50fc65ae72ff549
https://git.kernel.org/stable/c/8ee065a7a9b6a3976c16340503677efc4d8351f6
https://git.kernel.org/stable/c/979b418b96e35f07136f77962ccfaa54cf3e30e1
https://git.kernel.org/stable/c/b19ab4b38b06aae12442b2de95ccf58b5dc53584
https://git.kernel.org/stable/c/b7220f8e9d6c6b9594ddfb3125dad938cd478b1f
https://lore.kernel.org/linux-cve-announce/2024071628-CVE-2022-48860-92e9@gregkh/T
https://nvd.nist.gov/vuln/detail/CVE-2022-48860
https://www.cve.org/CVERecord?id=CVE-2022-48860

Type	Values Removed	Values Added
Weaknesses	CWE-402

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Type	Values Removed	Values Added
Weaknesses		CWE-402
Metrics	threat_severity `Moderate`	threat_severity `Low`

Show plain JSON

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2022-48860", "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "state": "PUBLISHED", "assignerShortName": "Linux", "dateReserved": "2024-07-16T11:38:08.920Z", "datePublished": "2024-07-16T12:25:24.498Z", "dateUpdated": "2025-05-04T08:24:54.037Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "shortName": "Linux", "dateUpdated": "2025-05-04T08:24:54.037Z"}, "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nethernet: Fix error handling in xemaclite_of_probe\n\nThis node pointer is returned by of_parse_phandle() with refcount\nincremented in this function. Calling of_node_put() to avoid the\nrefcount leak. As the remove function do."}], "affected": [{"product": "Linux", "vendor": "Linux", "defaultStatus": "unaffected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["drivers/net/ethernet/xilinx/xilinx_emaclite.c"], "versions": [{"version": "5cdaaa12866e916d0ada8b56c5f0e543cfc7fe3d", "lessThan": "669172ce976608b25a2f76f3c65d47f042d125c9", "status": "affected", "versionType": "git"}, {"version": "5cdaaa12866e916d0ada8b56c5f0e543cfc7fe3d", "lessThan": "b7220f8e9d6c6b9594ddfb3125dad938cd478b1f", "status": "affected", "versionType": "git"}, {"version": "5cdaaa12866e916d0ada8b56c5f0e543cfc7fe3d", "lessThan": "8609e29611befc4bfbe7a91bb50fc65ae72ff549", "status": "affected", "versionType": "git"}, {"version": "5cdaaa12866e916d0ada8b56c5f0e543cfc7fe3d", "lessThan": "8ee065a7a9b6a3976c16340503677efc4d8351f6", "status": "affected", "versionType": "git"}, {"version": "5cdaaa12866e916d0ada8b56c5f0e543cfc7fe3d", "lessThan": "979b418b96e35f07136f77962ccfaa54cf3e30e1", "status": "affected", "versionType": "git"}, {"version": "5cdaaa12866e916d0ada8b56c5f0e543cfc7fe3d", "lessThan": "5e7c402892e189a7bc152b125e72261154aa585d", "status": "affected", "versionType": "git"}, {"version": "5cdaaa12866e916d0ada8b56c5f0e543cfc7fe3d", "lessThan": "1852854ee349881efb78ccdbbb237838975902e4", "status": "affected", "versionType": "git"}, {"version": "5cdaaa12866e916d0ada8b56c5f0e543cfc7fe3d", "lessThan": "b19ab4b38b06aae12442b2de95ccf58b5dc53584", "status": "affected", "versionType": "git"}]}, {"product": "Linux", "vendor": "Linux", "defaultStatus": "affected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["drivers/net/ethernet/xilinx/xilinx_emaclite.c"], "versions": [{"version": "2.6.34", "status": "affected"}, {"version": "0", "lessThan": "2.6.34", "status": "unaffected", "versionType": "semver"}, {"version": "4.9.307", "lessThanOrEqual": "4.9.*", "status": "unaffected", "versionType": "semver"}, {"version": "4.14.272", "lessThanOrEqual": "4.14.*", "status": "unaffected", "versionType": "semver"}, {"version": "4.19.235", "lessThanOrEqual": "4.19.*", "status": "unaffected", "versionType": "semver"}, {"version": "5.4.185", "lessThanOrEqual": "5.4.*", "status": "unaffected", "versionType": "semver"}, {"version": "5.10.106", "lessThanOrEqual": "5.10.*", "status": "unaffected", "versionType": "semver"}, {"version": "5.15.29", "lessThanOrEqual": "5.15.*", "status": "unaffected", "versionType": "semver"}, {"version": "5.16.15", "lessThanOrEqual": "5.16.*", "status": "unaffected", "versionType": "semver"}, {"version": "5.17", "lessThanOrEqual": "*", "status": "unaffected", "versionType": "original_commit_for_fix"}]}], "cpeApplicability": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "2.6.34", "versionEndExcluding": "4.9.307"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "2.6.34", "versionEndExcluding": "4.14.272"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "2.6.34", "versionEndExcluding": "4.19.235"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "2.6.34", "versionEndExcluding": "5.4.185"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "2.6.34", "versionEndExcluding": "5.10.106"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "2.6.34", "versionEndExcluding": "5.15.29"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "2.6.34", "versionEndExcluding": "5.16.15"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "2.6.34", "versionEndExcluding": "5.17"}]}]}], "references": [{"url": "https://git.kernel.org/stable/c/669172ce976608b25a2f76f3c65d47f042d125c9"}, {"url": "https://git.kernel.org/stable/c/b7220f8e9d6c6b9594ddfb3125dad938cd478b1f"}, {"url": "https://git.kernel.org/stable/c/8609e29611befc4bfbe7a91bb50fc65ae72ff549"}, {"url": "https://git.kernel.org/stable/c/8ee065a7a9b6a3976c16340503677efc4d8351f6"}, {"url": "https://git.kernel.org/stable/c/979b418b96e35f07136f77962ccfaa54cf3e30e1"}, {"url": "https://git.kernel.org/stable/c/5e7c402892e189a7bc152b125e72261154aa585d"}, {"url": "https://git.kernel.org/stable/c/1852854ee349881efb78ccdbbb237838975902e4"}, {"url": "https://git.kernel.org/stable/c/b19ab4b38b06aae12442b2de95ccf58b5dc53584"}], "title": "ethernet: Fix error handling in xemaclite_of_probe", "x_generator": {"engine": "bippy-1.2.0"}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-03T15:25:01.617Z"}, "title": "CVE Program Container", "references": [{"url": "https://git.kernel.org/stable/c/669172ce976608b25a2f76f3c65d47f042d125c9", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/b7220f8e9d6c6b9594ddfb3125dad938cd478b1f", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/8609e29611befc4bfbe7a91bb50fc65ae72ff549", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/8ee065a7a9b6a3976c16340503677efc4d8351f6", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/979b418b96e35f07136f77962ccfaa54cf3e30e1", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/5e7c402892e189a7bc152b125e72261154aa585d", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/1852854ee349881efb78ccdbbb237838975902e4", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/b19ab4b38b06aae12442b2de95ccf58b5dc53584", "tags": ["x_transferred"]}]}, {"metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2022-48860", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-09-10T16:25:35.845012Z"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-09-11T17:34:07.526Z"}}]}}

{

dataType : CVE_RECORD (string)

dataVersion : 5.1 (string)

cveMetadata : { »

cveId : CVE-2022-48860 (string)

assignerOrgId : 416baaa9-dc9f-4396-8d5f-8c081fb06d67 (string)

state : PUBLISHED (string)

assignerShortName : Linux (string)

dateReserved : 2024-07-16T11:38:08.920Z (string)

datePublished : 2024-07-16T12:25:24.498Z (string)

dateUpdated : 2025-05-04T08:24:54.037Z (string)

}

containers : { »

cna : { »

providerMetadata : { »

orgId : 416baaa9-dc9f-4396-8d5f-8c081fb06d67 (string)

shortName : Linux (string)

dateUpdated : 2025-05-04T08:24:54.037Z (string)

}

descriptions : [ »

0 : { »

lang : en (string)

value : In the Linux kernel, the following vulnerability has been resolved: ethernet: Fix error handling in xemaclite_of_probe This node pointer is returned by of_parse_phandle() with refcount incremented in this function. Calling of_node_put() to avoid the refcount leak. As the remove function do. (string)

}

]

affected : [ »

0 : { »

product : Linux (string)

vendor : Linux (string)

defaultStatus : unaffected (string)

repo : https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git (string)

programFiles : [ »

0 : drivers/net/ethernet/xilinx/xilinx_emaclite.c (string)

]

versions : [ »

0 : { »

version : 5cdaaa12866e916d0ada8b56c5f0e543cfc7fe3d (string)

lessThan : 669172ce976608b25a2f76f3c65d47f042d125c9 (string)

status : affected (string)

versionType : git (string)

}

1 : { »

version : 5cdaaa12866e916d0ada8b56c5f0e543cfc7fe3d (string)

lessThan : b7220f8e9d6c6b9594ddfb3125dad938cd478b1f (string)

status : affected (string)

versionType : git (string)

}

2 : { »

version : 5cdaaa12866e916d0ada8b56c5f0e543cfc7fe3d (string)

lessThan : 8609e29611befc4bfbe7a91bb50fc65ae72ff549 (string)

status : affected (string)

versionType : git (string)

}

3 : { »

version : 5cdaaa12866e916d0ada8b56c5f0e543cfc7fe3d (string)

lessThan : 8ee065a7a9b6a3976c16340503677efc4d8351f6 (string)

status : affected (string)

versionType : git (string)

}

4 : { »

version : 5cdaaa12866e916d0ada8b56c5f0e543cfc7fe3d (string)

lessThan : 979b418b96e35f07136f77962ccfaa54cf3e30e1 (string)

status : affected (string)

versionType : git (string)

}

5 : { »

version : 5cdaaa12866e916d0ada8b56c5f0e543cfc7fe3d (string)

lessThan : 5e7c402892e189a7bc152b125e72261154aa585d (string)

status : affected (string)

versionType : git (string)

}

6 : { »

version : 5cdaaa12866e916d0ada8b56c5f0e543cfc7fe3d (string)

lessThan : 1852854ee349881efb78ccdbbb237838975902e4 (string)

status : affected (string)

versionType : git (string)

}

7 : { »

version : 5cdaaa12866e916d0ada8b56c5f0e543cfc7fe3d (string)

lessThan : b19ab4b38b06aae12442b2de95ccf58b5dc53584 (string)

status : affected (string)

versionType : git (string)

}

]

}

1 : { »

product : Linux (string)

vendor : Linux (string)

defaultStatus : affected (string)

repo : https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git (string)

programFiles : [ »

0 : drivers/net/ethernet/xilinx/xilinx_emaclite.c (string)

]

versions : [ »

0 : { »

version : 2.6.34 (string)

status : affected (string)

}

1 : { »

version : 0 (string)

lessThan : 2.6.34 (string)

status : unaffected (string)

versionType : semver (string)

}

2 : { »

version : 4.9.307 (string)

lessThanOrEqual : 4.9.* (string)

status : unaffected (string)

versionType : semver (string)

}

3 : { »

version : 4.14.272 (string)

lessThanOrEqual : 4.14.* (string)

status : unaffected (string)

versionType : semver (string)

}

4 : { »

version : 4.19.235 (string)

lessThanOrEqual : 4.19.* (string)

status : unaffected (string)

versionType : semver (string)

}

5 : { »

version : 5.4.185 (string)

lessThanOrEqual : 5.4.* (string)

status : unaffected (string)

versionType : semver (string)

}

6 : { »

version : 5.10.106 (string)

lessThanOrEqual : 5.10.* (string)

status : unaffected (string)

versionType : semver (string)

}

7 : { »

version : 5.15.29 (string)

lessThanOrEqual : 5.15.* (string)

status : unaffected (string)

versionType : semver (string)

}

8 : { »

version : 5.16.15 (string)

lessThanOrEqual : 5.16.* (string)

status : unaffected (string)

versionType : semver (string)

}

9 : { »

version : 5.17 (string)

lessThanOrEqual : * (string)

status : unaffected (string)

versionType : original_commit_for_fix (string)

}

]

}

]

cpeApplicability : [ »

0 : { »

nodes : [ »

0 : { »

operator : OR (string)

negate : false (boolean)

cpeMatch : [ »

0 : { »

vulnerable : true (boolean)

criteria : cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* (string)

versionStartIncluding : 2.6.34 (string)

versionEndExcluding : 4.9.307 (string)

}

1 : { »

vulnerable : true (boolean)

criteria : cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* (string)

versionStartIncluding : 2.6.34 (string)

versionEndExcluding : 4.14.272 (string)

}

2 : { »

vulnerable : true (boolean)

criteria : cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* (string)

versionStartIncluding : 2.6.34 (string)

versionEndExcluding : 4.19.235 (string)

}

3 : { »

vulnerable : true (boolean)

criteria : cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* (string)

versionStartIncluding : 2.6.34 (string)

versionEndExcluding : 5.4.185 (string)

}

4 : { »

vulnerable : true (boolean)

criteria : cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* (string)

versionStartIncluding : 2.6.34 (string)

versionEndExcluding : 5.10.106 (string)

}

5 : { »

vulnerable : true (boolean)

criteria : cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* (string)

versionStartIncluding : 2.6.34 (string)

versionEndExcluding : 5.15.29 (string)

}

6 : { »

vulnerable : true (boolean)

criteria : cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* (string)

versionStartIncluding : 2.6.34 (string)

versionEndExcluding : 5.16.15 (string)

}

7 : { »

vulnerable : true (boolean)

criteria : cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* (string)

versionStartIncluding : 2.6.34 (string)

versionEndExcluding : 5.17 (string)

}

]

}

]

}

]

references : [ »

0 : { »

url : https://git.kernel.org/stable/c/669172ce976608b25a2f76f3c65d47f042d125c9 (string)

}

1 : { »

url : https://git.kernel.org/stable/c/b7220f8e9d6c6b9594ddfb3125dad938cd478b1f (string)

}

2 : { »

url : https://git.kernel.org/stable/c/8609e29611befc4bfbe7a91bb50fc65ae72ff549 (string)

}

3 : { »

url : https://git.kernel.org/stable/c/8ee065a7a9b6a3976c16340503677efc4d8351f6 (string)

}

4 : { »

url : https://git.kernel.org/stable/c/979b418b96e35f07136f77962ccfaa54cf3e30e1 (string)

}

5 : { »

url : https://git.kernel.org/stable/c/5e7c402892e189a7bc152b125e72261154aa585d (string)

}

6 : { »

url : https://git.kernel.org/stable/c/1852854ee349881efb78ccdbbb237838975902e4 (string)

}

7 : { »

url : https://git.kernel.org/stable/c/b19ab4b38b06aae12442b2de95ccf58b5dc53584 (string)

}

]

title : ethernet: Fix error handling in xemaclite_of_probe (string)

x_generator : { »

engine : bippy-1.2.0 (string)

}

adp : [ »

0 : { »

providerMetadata : { »

orgId : af854a3a-2127-422b-91ae-364da2661108 (string)

shortName : CVE (string)

dateUpdated : 2024-08-03T15:25:01.617Z (string)

}

title : CVE Program Container (string)

references : [ »

0 : { »

url : https://git.kernel.org/stable/c/669172ce976608b25a2f76f3c65d47f042d125c9 (string)

tags : [ »

0 : x_transferred (string)

]

}

1 : { »

url : https://git.kernel.org/stable/c/b7220f8e9d6c6b9594ddfb3125dad938cd478b1f (string)

tags : [ »

0 : x_transferred (string)

]

}

2 : { »

url : https://git.kernel.org/stable/c/8609e29611befc4bfbe7a91bb50fc65ae72ff549 (string)

tags : [ »

0 : x_transferred (string)

]

}

3 : { »

url : https://git.kernel.org/stable/c/8ee065a7a9b6a3976c16340503677efc4d8351f6 (string)

tags : [ »

0 : x_transferred (string)

]

}

4 : { »

url : https://git.kernel.org/stable/c/979b418b96e35f07136f77962ccfaa54cf3e30e1 (string)

tags : [ »

0 : x_transferred (string)

]

}

5 : { »

url : https://git.kernel.org/stable/c/5e7c402892e189a7bc152b125e72261154aa585d (string)

tags : [ »

0 : x_transferred (string)

]

}

6 : { »

url : https://git.kernel.org/stable/c/1852854ee349881efb78ccdbbb237838975902e4 (string)

tags : [ »

0 : x_transferred (string)

]

}

7 : { »

url : https://git.kernel.org/stable/c/b19ab4b38b06aae12442b2de95ccf58b5dc53584 (string)

tags : [ »

0 : x_transferred (string)

]

}

]

}

1 : { »

metrics : [ »

0 : { »

other : { »

type : ssvc (string)

content : { »

id : CVE-2022-48860 (string)

role : CISA Coordinator (string)

options : [ »

0 : { »

Exploitation : none (string)

}

1 : { »

Automatable : no (string)

}

2 : { »

Technical Impact : partial (string)

}

]

version : 2.0.3 (string)

timestamp : 2024-09-10T16:25:35.845012Z (string)

}

]

title : CISA ADP Vulnrichment (string)

providerMetadata : { »

orgId : 134c704f-9b21-4f2e-91b3-4a467353bcc0 (string)

shortName : CISA-ADP (string)

dateUpdated : 2024-09-11T17:34:07.526Z (string)

}

]

}

Show plain JSON

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://git.kernel.org/stable/c/669172ce976608b25a2f76f3c65d47f042d125c9", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/b7220f8e9d6c6b9594ddfb3125dad938cd478b1f", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/8609e29611befc4bfbe7a91bb50fc65ae72ff549", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/8ee065a7a9b6a3976c16340503677efc4d8351f6", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/979b418b96e35f07136f77962ccfaa54cf3e30e1", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/5e7c402892e189a7bc152b125e72261154aa585d", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/1852854ee349881efb78ccdbbb237838975902e4", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/b19ab4b38b06aae12442b2de95ccf58b5dc53584", "tags": ["x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-03T15:25:01.617Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2022-48860", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-09-10T16:25:35.845012Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-09-11T12:42:20.804Z"}}], "cna": {"title": "ethernet: Fix error handling in xemaclite_of_probe", "affected": [{"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "vendor": "Linux", "product": "Linux", "versions": [{"status": "affected", "version": "5cdaaa12866e916d0ada8b56c5f0e543cfc7fe3d", "lessThan": "669172ce976608b25a2f76f3c65d47f042d125c9", "versionType": "git"}, {"status": "affected", "version": "5cdaaa12866e916d0ada8b56c5f0e543cfc7fe3d", "lessThan": "b7220f8e9d6c6b9594ddfb3125dad938cd478b1f", "versionType": "git"}, {"status": "affected", "version": "5cdaaa12866e916d0ada8b56c5f0e543cfc7fe3d", "lessThan": "8609e29611befc4bfbe7a91bb50fc65ae72ff549", "versionType": "git"}, {"status": "affected", "version": "5cdaaa12866e916d0ada8b56c5f0e543cfc7fe3d", "lessThan": "8ee065a7a9b6a3976c16340503677efc4d8351f6", "versionType": "git"}, {"status": "affected", "version": "5cdaaa12866e916d0ada8b56c5f0e543cfc7fe3d", "lessThan": "979b418b96e35f07136f77962ccfaa54cf3e30e1", "versionType": "git"}, {"status": "affected", "version": "5cdaaa12866e916d0ada8b56c5f0e543cfc7fe3d", "lessThan": "5e7c402892e189a7bc152b125e72261154aa585d", "versionType": "git"}, {"status": "affected", "version": "5cdaaa12866e916d0ada8b56c5f0e543cfc7fe3d", "lessThan": "1852854ee349881efb78ccdbbb237838975902e4", "versionType": "git"}, {"status": "affected", "version": "5cdaaa12866e916d0ada8b56c5f0e543cfc7fe3d", "lessThan": "b19ab4b38b06aae12442b2de95ccf58b5dc53584", "versionType": "git"}], "programFiles": ["drivers/net/ethernet/xilinx/xilinx_emaclite.c"], "defaultStatus": "unaffected"}, {"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "vendor": "Linux", "product": "Linux", "versions": [{"status": "affected", "version": "2.6.34"}, {"status": "unaffected", "version": "0", "lessThan": "2.6.34", "versionType": "semver"}, {"status": "unaffected", "version": "4.9.307", "versionType": "semver", "lessThanOrEqual": "4.9.*"}, {"status": "unaffected", "version": "4.14.272", "versionType": "semver", "lessThanOrEqual": "4.14.*"}, {"status": "unaffected", "version": "4.19.235", "versionType": "semver", "lessThanOrEqual": "4.19.*"}, {"status": "unaffected", "version": "5.4.185", "versionType": "semver", "lessThanOrEqual": "5.4.*"}, {"status": "unaffected", "version": "5.10.106", "versionType": "semver", "lessThanOrEqual": "5.10.*"}, {"status": "unaffected", "version": "5.15.29", "versionType": "semver", "lessThanOrEqual": "5.15.*"}, {"status": "unaffected", "version": "5.16.15", "versionType": "semver", "lessThanOrEqual": "5.16.*"}, {"status": "unaffected", "version": "5.17", "versionType": "original_commit_for_fix", "lessThanOrEqual": "*"}], "programFiles": ["drivers/net/ethernet/xilinx/xilinx_emaclite.c"], "defaultStatus": "affected"}], "references": [{"url": "https://git.kernel.org/stable/c/669172ce976608b25a2f76f3c65d47f042d125c9"}, {"url": "https://git.kernel.org/stable/c/b7220f8e9d6c6b9594ddfb3125dad938cd478b1f"}, {"url": "https://git.kernel.org/stable/c/8609e29611befc4bfbe7a91bb50fc65ae72ff549"}, {"url": "https://git.kernel.org/stable/c/8ee065a7a9b6a3976c16340503677efc4d8351f6"}, {"url": "https://git.kernel.org/stable/c/979b418b96e35f07136f77962ccfaa54cf3e30e1"}, {"url": "https://git.kernel.org/stable/c/5e7c402892e189a7bc152b125e72261154aa585d"}, {"url": "https://git.kernel.org/stable/c/1852854ee349881efb78ccdbbb237838975902e4"}, {"url": "https://git.kernel.org/stable/c/b19ab4b38b06aae12442b2de95ccf58b5dc53584"}], "x_generator": {"engine": "bippy-1.2.0"}, "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nethernet: Fix error handling in xemaclite_of_probe\n\nThis node pointer is returned by of_parse_phandle() with refcount\nincremented in this function. Calling of_node_put() to avoid the\nrefcount leak. As the remove function do."}], "cpeApplicability": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "vulnerable": true, "versionEndExcluding": "4.9.307", "versionStartIncluding": "2.6.34"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "vulnerable": true, "versionEndExcluding": "4.14.272", "versionStartIncluding": "2.6.34"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "vulnerable": true, "versionEndExcluding": "4.19.235", "versionStartIncluding": "2.6.34"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "vulnerable": true, "versionEndExcluding": "5.4.185", "versionStartIncluding": "2.6.34"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "vulnerable": true, "versionEndExcluding": "5.10.106", "versionStartIncluding": "2.6.34"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "vulnerable": true, "versionEndExcluding": "5.15.29", "versionStartIncluding": "2.6.34"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "vulnerable": true, "versionEndExcluding": "5.16.15", "versionStartIncluding": "2.6.34"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "vulnerable": true, "versionEndExcluding": "5.17", "versionStartIncluding": "2.6.34"}], "operator": "OR"}]}], "providerMetadata": {"orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "shortName": "Linux", "dateUpdated": "2025-05-04T08:24:54.037Z"}}}, "cveMetadata": {"cveId": "CVE-2022-48860", "state": "PUBLISHED", "dateUpdated": "2025-05-04T08:24:54.037Z", "dateReserved": "2024-07-16T11:38:08.920Z", "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "datePublished": "2024-07-16T12:25:24.498Z", "assignerShortName": "Linux"}, "dataVersion": "5.1"}

{

dataType : CVE_RECORD (string)

containers : { »

adp : [ »

0 : { »

title : CVE Program Container (string)

references : [ »

0 : { »

url : https://git.kernel.org/stable/c/669172ce976608b25a2f76f3c65d47f042d125c9 (string)

tags : [ »

0 : x_transferred (string)

]

}

1 : { »

url : https://git.kernel.org/stable/c/b7220f8e9d6c6b9594ddfb3125dad938cd478b1f (string)

tags : [ »

0 : x_transferred (string)

]

}

2 : { »

url : https://git.kernel.org/stable/c/8609e29611befc4bfbe7a91bb50fc65ae72ff549 (string)

tags : [ »

0 : x_transferred (string)

]

}

3 : { »

url : https://git.kernel.org/stable/c/8ee065a7a9b6a3976c16340503677efc4d8351f6 (string)

tags : [ »

0 : x_transferred (string)

]

}

4 : { »

url : https://git.kernel.org/stable/c/979b418b96e35f07136f77962ccfaa54cf3e30e1 (string)

tags : [ »

0 : x_transferred (string)

]

}

5 : { »

url : https://git.kernel.org/stable/c/5e7c402892e189a7bc152b125e72261154aa585d (string)

tags : [ »

0 : x_transferred (string)

]

}

6 : { »

url : https://git.kernel.org/stable/c/1852854ee349881efb78ccdbbb237838975902e4 (string)

tags : [ »

0 : x_transferred (string)

]

}

7 : { »

url : https://git.kernel.org/stable/c/b19ab4b38b06aae12442b2de95ccf58b5dc53584 (string)

tags : [ »

0 : x_transferred (string)

]

}

]

providerMetadata : { »

orgId : af854a3a-2127-422b-91ae-364da2661108 (string)

shortName : CVE (string)

dateUpdated : 2024-08-03T15:25:01.617Z (string)

}

1 : { »

title : CISA ADP Vulnrichment (string)

metrics : [ »

0 : { »

other : { »

type : ssvc (string)

content : { »

id : CVE-2022-48860 (string)

role : CISA Coordinator (string)

options : [ »

0 : { »

Exploitation : none (string)

}

1 : { »

Automatable : no (string)

}

2 : { »

Technical Impact : partial (string)

}

]

version : 2.0.3 (string)

timestamp : 2024-09-10T16:25:35.845012Z (string)

}

]

providerMetadata : { »

orgId : 134c704f-9b21-4f2e-91b3-4a467353bcc0 (string)

shortName : CISA-ADP (string)

dateUpdated : 2024-09-11T12:42:20.804Z (string)

}

]

cna : { »

title : ethernet: Fix error handling in xemaclite_of_probe (string)

affected : [ »

0 : { »

repo : https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git (string)

vendor : Linux (string)

product : Linux (string)

versions : [ »

0 : { »

status : affected (string)

version : 5cdaaa12866e916d0ada8b56c5f0e543cfc7fe3d (string)

lessThan : 669172ce976608b25a2f76f3c65d47f042d125c9 (string)

versionType : git (string)

}

1 : { »

status : affected (string)

version : 5cdaaa12866e916d0ada8b56c5f0e543cfc7fe3d (string)

lessThan : b7220f8e9d6c6b9594ddfb3125dad938cd478b1f (string)

versionType : git (string)

}

2 : { »

status : affected (string)

version : 5cdaaa12866e916d0ada8b56c5f0e543cfc7fe3d (string)

lessThan : 8609e29611befc4bfbe7a91bb50fc65ae72ff549 (string)

versionType : git (string)

}

3 : { »

status : affected (string)

version : 5cdaaa12866e916d0ada8b56c5f0e543cfc7fe3d (string)

lessThan : 8ee065a7a9b6a3976c16340503677efc4d8351f6 (string)

versionType : git (string)

}

4 : { »

status : affected (string)

version : 5cdaaa12866e916d0ada8b56c5f0e543cfc7fe3d (string)

lessThan : 979b418b96e35f07136f77962ccfaa54cf3e30e1 (string)

versionType : git (string)

}

5 : { »

status : affected (string)

version : 5cdaaa12866e916d0ada8b56c5f0e543cfc7fe3d (string)

lessThan : 5e7c402892e189a7bc152b125e72261154aa585d (string)

versionType : git (string)

}

6 : { »

status : affected (string)

version : 5cdaaa12866e916d0ada8b56c5f0e543cfc7fe3d (string)

lessThan : 1852854ee349881efb78ccdbbb237838975902e4 (string)

versionType : git (string)

}

7 : { »

status : affected (string)

version : 5cdaaa12866e916d0ada8b56c5f0e543cfc7fe3d (string)

lessThan : b19ab4b38b06aae12442b2de95ccf58b5dc53584 (string)

versionType : git (string)

}

]

programFiles : [ »

0 : drivers/net/ethernet/xilinx/xilinx_emaclite.c (string)

]

defaultStatus : unaffected (string)

}

1 : { »

repo : https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git (string)

vendor : Linux (string)

product : Linux (string)

versions : [ »

0 : { »

status : affected (string)

version : 2.6.34 (string)

}

1 : { »

status : unaffected (string)

version : 0 (string)

lessThan : 2.6.34 (string)

versionType : semver (string)

}

2 : { »

status : unaffected (string)

version : 4.9.307 (string)

versionType : semver (string)

lessThanOrEqual : 4.9.* (string)

}

3 : { »

status : unaffected (string)

version : 4.14.272 (string)

versionType : semver (string)

lessThanOrEqual : 4.14.* (string)

}

4 : { »

status : unaffected (string)

version : 4.19.235 (string)

versionType : semver (string)

lessThanOrEqual : 4.19.* (string)

}

5 : { »

status : unaffected (string)

version : 5.4.185 (string)

versionType : semver (string)

lessThanOrEqual : 5.4.* (string)

}

6 : { »

status : unaffected (string)

version : 5.10.106 (string)

versionType : semver (string)

lessThanOrEqual : 5.10.* (string)

}

7 : { »

status : unaffected (string)

version : 5.15.29 (string)

versionType : semver (string)

lessThanOrEqual : 5.15.* (string)

}

8 : { »

status : unaffected (string)

version : 5.16.15 (string)

versionType : semver (string)

lessThanOrEqual : 5.16.* (string)

}

9 : { »

status : unaffected (string)

version : 5.17 (string)

versionType : original_commit_for_fix (string)

lessThanOrEqual : * (string)

}

]

programFiles : [ »

0 : drivers/net/ethernet/xilinx/xilinx_emaclite.c (string)

]

defaultStatus : affected (string)

}

]

references : [ »

0 : { »

url : https://git.kernel.org/stable/c/669172ce976608b25a2f76f3c65d47f042d125c9 (string)

}

1 : { »

url : https://git.kernel.org/stable/c/b7220f8e9d6c6b9594ddfb3125dad938cd478b1f (string)

}

2 : { »

url : https://git.kernel.org/stable/c/8609e29611befc4bfbe7a91bb50fc65ae72ff549 (string)

}

3 : { »

url : https://git.kernel.org/stable/c/8ee065a7a9b6a3976c16340503677efc4d8351f6 (string)

}

4 : { »

url : https://git.kernel.org/stable/c/979b418b96e35f07136f77962ccfaa54cf3e30e1 (string)

}

5 : { »

url : https://git.kernel.org/stable/c/5e7c402892e189a7bc152b125e72261154aa585d (string)

}

6 : { »

url : https://git.kernel.org/stable/c/1852854ee349881efb78ccdbbb237838975902e4 (string)

}

7 : { »

url : https://git.kernel.org/stable/c/b19ab4b38b06aae12442b2de95ccf58b5dc53584 (string)

}

]

x_generator : { »

engine : bippy-1.2.0 (string)

}

descriptions : [ »

0 : { »

lang : en (string)

value : In the Linux kernel, the following vulnerability has been resolved: ethernet: Fix error handling in xemaclite_of_probe This node pointer is returned by of_parse_phandle() with refcount incremented in this function. Calling of_node_put() to avoid the refcount leak. As the remove function do. (string)

}

]

cpeApplicability : [ »

0 : { »

nodes : [ »

0 : { »

negate : false (boolean)

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* (string)

vulnerable : true (boolean)

versionEndExcluding : 4.9.307 (string)

versionStartIncluding : 2.6.34 (string)

}

1 : { »

criteria : cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* (string)

vulnerable : true (boolean)

versionEndExcluding : 4.14.272 (string)

versionStartIncluding : 2.6.34 (string)

}

2 : { »

criteria : cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* (string)

vulnerable : true (boolean)

versionEndExcluding : 4.19.235 (string)

versionStartIncluding : 2.6.34 (string)

}

3 : { »

criteria : cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* (string)

vulnerable : true (boolean)

versionEndExcluding : 5.4.185 (string)

versionStartIncluding : 2.6.34 (string)

}

4 : { »

criteria : cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* (string)

vulnerable : true (boolean)

versionEndExcluding : 5.10.106 (string)

versionStartIncluding : 2.6.34 (string)

}

5 : { »

criteria : cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* (string)

vulnerable : true (boolean)

versionEndExcluding : 5.15.29 (string)

versionStartIncluding : 2.6.34 (string)

}

6 : { »

criteria : cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* (string)

vulnerable : true (boolean)

versionEndExcluding : 5.16.15 (string)

versionStartIncluding : 2.6.34 (string)

}

7 : { »

criteria : cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* (string)

vulnerable : true (boolean)

versionEndExcluding : 5.17 (string)

versionStartIncluding : 2.6.34 (string)

}

]

operator : OR (string)

}

]

}

]

providerMetadata : { »

orgId : 416baaa9-dc9f-4396-8d5f-8c081fb06d67 (string)

shortName : Linux (string)

dateUpdated : 2025-05-04T08:24:54.037Z (string)

}

cveMetadata : { »

cveId : CVE-2022-48860 (string)

state : PUBLISHED (string)

dateUpdated : 2025-05-04T08:24:54.037Z (string)

dateReserved : 2024-07-16T11:38:08.920Z (string)

assignerOrgId : 416baaa9-dc9f-4396-8d5f-8c081fb06d67 (string)

datePublished : 2024-07-16T12:25:24.498Z (string)

assignerShortName : Linux (string)

}

dataVersion : 5.1 (string)

}

Show plain JSON

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "matchCriteriaId": "9190F71C-97BD-4F5F-95BB-D49D4E6B31E4", "versionEndExcluding": "4.9.307", "versionStartIncluding": "2.6.34", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "matchCriteriaId": "7F0FA2C5-4E50-48A6-9D72-7C133B60EF05", "versionEndExcluding": "4.14.272", "versionStartIncluding": "4.10", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "matchCriteriaId": "F8671D74-E8CD-4E41-A93F-3E3E88125D16", "versionEndExcluding": "4.19.235", "versionStartIncluding": "4.15", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "matchCriteriaId": "B374BFBF-C879-4A72-921F-C850CF7DFB99", "versionEndExcluding": "5.4.185", "versionStartIncluding": "4.20", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "matchCriteriaId": "6A4F38AC-99A2-48DF-B132-C9F785B309B8", "versionEndExcluding": "5.10.106", "versionStartIncluding": "5.5", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "matchCriteriaId": "15DC6588-B28F-4637-9A1E-3753B34A40CF", "versionEndExcluding": "5.15.29", "versionStartIncluding": "5.11", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "matchCriteriaId": "83FDEDF2-0E19-4879-91FD-171E66D1B335", "versionEndExcluding": "5.16.15", "versionStartIncluding": "5.16", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nethernet: Fix error handling in xemaclite_of_probe\n\nThis node pointer is returned by of_parse_phandle() with refcount\nincremented in this function. Calling of_node_put() to avoid the\nrefcount leak. As the remove function do."}, {"lang": "es", "value": "En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: ethernet: corrige el manejo de errores en xemaclite_of_probe Este puntero de nodo lo devuelve of_parse_phandle() con refcount incrementado en esta funci\u00f3n. Llamar a of_node_put() para evitar la fuga de recuento. Como lo hace la funci\u00f3n de eliminaci\u00f3n."}], "id": "CVE-2022-48860", "lastModified": "2024-11-21T07:34:13.870", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 5.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 1.8, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2024-07-16T13:15:12.940", "references": [{"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "tags": ["Patch"], "url": "https://git.kernel.org/stable/c/1852854ee349881efb78ccdbbb237838975902e4"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "tags": ["Patch"], "url": "https://git.kernel.org/stable/c/5e7c402892e189a7bc152b125e72261154aa585d"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "tags": ["Patch"], "url": "https://git.kernel.org/stable/c/669172ce976608b25a2f76f3c65d47f042d125c9"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "tags": ["Patch"], "url": "https://git.kernel.org/stable/c/8609e29611befc4bfbe7a91bb50fc65ae72ff549"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "tags": ["Patch"], "url": "https://git.kernel.org/stable/c/8ee065a7a9b6a3976c16340503677efc4d8351f6"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "tags": ["Patch"], "url": "https://git.kernel.org/stable/c/979b418b96e35f07136f77962ccfaa54cf3e30e1"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "tags": ["Patch"], "url": "https://git.kernel.org/stable/c/b19ab4b38b06aae12442b2de95ccf58b5dc53584"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "tags": ["Patch"], "url": "https://git.kernel.org/stable/c/b7220f8e9d6c6b9594ddfb3125dad938cd478b1f"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "https://git.kernel.org/stable/c/1852854ee349881efb78ccdbbb237838975902e4"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "https://git.kernel.org/stable/c/5e7c402892e189a7bc152b125e72261154aa585d"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "https://git.kernel.org/stable/c/669172ce976608b25a2f76f3c65d47f042d125c9"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "https://git.kernel.org/stable/c/8609e29611befc4bfbe7a91bb50fc65ae72ff549"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "https://git.kernel.org/stable/c/8ee065a7a9b6a3976c16340503677efc4d8351f6"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "https://git.kernel.org/stable/c/979b418b96e35f07136f77962ccfaa54cf3e30e1"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "https://git.kernel.org/stable/c/b19ab4b38b06aae12442b2de95ccf58b5dc53584"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "https://git.kernel.org/stable/c/b7220f8e9d6c6b9594ddfb3125dad938cd478b1f"}], "sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-401"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{

configurations : [ »

0 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 9190F71C-97BD-4F5F-95BB-D49D4E6B31E4 (string)

versionEndExcluding : 4.9.307 (string)

versionStartIncluding : 2.6.34 (string)

vulnerable : true (boolean)

}

1 : { »

criteria : cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 7F0FA2C5-4E50-48A6-9D72-7C133B60EF05 (string)

versionEndExcluding : 4.14.272 (string)

versionStartIncluding : 4.10 (string)

vulnerable : true (boolean)

}

2 : { »

criteria : cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* (string)

matchCriteriaId : F8671D74-E8CD-4E41-A93F-3E3E88125D16 (string)

versionEndExcluding : 4.19.235 (string)

versionStartIncluding : 4.15 (string)

vulnerable : true (boolean)

}

3 : { »

criteria : cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* (string)

matchCriteriaId : B374BFBF-C879-4A72-921F-C850CF7DFB99 (string)

versionEndExcluding : 5.4.185 (string)

versionStartIncluding : 4.20 (string)

vulnerable : true (boolean)

}

4 : { »

criteria : cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 6A4F38AC-99A2-48DF-B132-C9F785B309B8 (string)

versionEndExcluding : 5.10.106 (string)

versionStartIncluding : 5.5 (string)

vulnerable : true (boolean)

}

5 : { »

criteria : cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 15DC6588-B28F-4637-9A1E-3753B34A40CF (string)

versionEndExcluding : 5.15.29 (string)

versionStartIncluding : 5.11 (string)

vulnerable : true (boolean)

}

6 : { »

criteria : cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 83FDEDF2-0E19-4879-91FD-171E66D1B335 (string)

versionEndExcluding : 5.16.15 (string)

versionStartIncluding : 5.16 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

}

]

descriptions : [ »

0 : { »

lang : en (string)

value : In the Linux kernel, the following vulnerability has been resolved: ethernet: Fix error handling in xemaclite_of_probe This node pointer is returned by of_parse_phandle() with refcount incremented in this function. Calling of_node_put() to avoid the refcount leak. As the remove function do. (string)

}

1 : { »

lang : es (string)

value : En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: ethernet: corrige el manejo de errores en xemaclite_of_probe Este puntero de nodo lo devuelve of_parse_phandle() con refcount incrementado en esta función. Llamar a of_node_put() para evitar la fuga de recuento. Como lo hace la función de eliminación. (string)

}

]

id : CVE-2022-48860 (string)

lastModified : 2024-11-21T07:34:13.870 (string)

metrics : { »

cvssMetricV31 : [ »

0 : { »

cvssData : { »

attackComplexity : LOW (string)

attackVector : LOCAL (string)

availabilityImpact : HIGH (string)

baseScore : 5.5 (number)

baseSeverity : MEDIUM (string)

confidentialityImpact : NONE (string)

integrityImpact : NONE (string)

privilegesRequired : LOW (string)

scope : UNCHANGED (string)

userInteraction : NONE (string)

vectorString : CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H (string)

version : 3.1 (string)

}

exploitabilityScore : 1.8 (number)

impactScore : 3.6 (number)

source : nvd@nist.gov (string)

type : Primary (string)

}

]

}

published : 2024-07-16T13:15:12.940 (string)

references : [ »

0 : { »

source : 416baaa9-dc9f-4396-8d5f-8c081fb06d67 (string)

tags : [ »

0 : Patch (string)

]

url : https://git.kernel.org/stable/c/1852854ee349881efb78ccdbbb237838975902e4 (string)

}

1 : { »

source : 416baaa9-dc9f-4396-8d5f-8c081fb06d67 (string)

tags : [ »

0 : Patch (string)

]

url : https://git.kernel.org/stable/c/5e7c402892e189a7bc152b125e72261154aa585d (string)

}

2 : { »

source : 416baaa9-dc9f-4396-8d5f-8c081fb06d67 (string)

tags : [ »

0 : Patch (string)

]

url : https://git.kernel.org/stable/c/669172ce976608b25a2f76f3c65d47f042d125c9 (string)

}

3 : { »

source : 416baaa9-dc9f-4396-8d5f-8c081fb06d67 (string)

tags : [ »

0 : Patch (string)

]

url : https://git.kernel.org/stable/c/8609e29611befc4bfbe7a91bb50fc65ae72ff549 (string)

}

4 : { »

source : 416baaa9-dc9f-4396-8d5f-8c081fb06d67 (string)

tags : [ »

0 : Patch (string)

]

url : https://git.kernel.org/stable/c/8ee065a7a9b6a3976c16340503677efc4d8351f6 (string)

}

5 : { »

source : 416baaa9-dc9f-4396-8d5f-8c081fb06d67 (string)

tags : [ »

0 : Patch (string)

]

url : https://git.kernel.org/stable/c/979b418b96e35f07136f77962ccfaa54cf3e30e1 (string)

}

6 : { »

source : 416baaa9-dc9f-4396-8d5f-8c081fb06d67 (string)

tags : [ »

0 : Patch (string)

]

url : https://git.kernel.org/stable/c/b19ab4b38b06aae12442b2de95ccf58b5dc53584 (string)

}

7 : { »

source : 416baaa9-dc9f-4396-8d5f-8c081fb06d67 (string)

tags : [ »

0 : Patch (string)

]

url : https://git.kernel.org/stable/c/b7220f8e9d6c6b9594ddfb3125dad938cd478b1f (string)

}

8 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Patch (string)

]

url : https://git.kernel.org/stable/c/1852854ee349881efb78ccdbbb237838975902e4 (string)

}

9 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Patch (string)

]

url : https://git.kernel.org/stable/c/5e7c402892e189a7bc152b125e72261154aa585d (string)

}

10 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Patch (string)

]

url : https://git.kernel.org/stable/c/669172ce976608b25a2f76f3c65d47f042d125c9 (string)

}

11 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Patch (string)

]

url : https://git.kernel.org/stable/c/8609e29611befc4bfbe7a91bb50fc65ae72ff549 (string)

}

12 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Patch (string)

]

url : https://git.kernel.org/stable/c/8ee065a7a9b6a3976c16340503677efc4d8351f6 (string)

}

13 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Patch (string)

]

url : https://git.kernel.org/stable/c/979b418b96e35f07136f77962ccfaa54cf3e30e1 (string)

}

14 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Patch (string)

]

url : https://git.kernel.org/stable/c/b19ab4b38b06aae12442b2de95ccf58b5dc53584 (string)

}

15 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Patch (string)

]

url : https://git.kernel.org/stable/c/b7220f8e9d6c6b9594ddfb3125dad938cd478b1f (string)

}

]

sourceIdentifier : 416baaa9-dc9f-4396-8d5f-8c081fb06d67 (string)

vulnStatus : Modified (string)

weaknesses : [ »

0 : { »

description : [ »

0 : { »

lang : en (string)

value : CWE-401 (string)

}

]

source : nvd@nist.gov (string)

type : Primary (string)

}

]

}

Show plain JSON

{"bugzilla": {"description": "kernel: ethernet: Fix error handling in xemaclite_of_probe", "id": "2298204", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2298204"}, "csaw": false, "cvss3": {"cvss3_base_score": "5.5", "cvss3_scoring_vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "status": "draft"}, "cwe": "CWE-401", "details": ["In the Linux kernel, the following vulnerability has been resolved:\nethernet: Fix error handling in xemaclite_of_probe\nThis node pointer is returned by of_parse_phandle() with refcount\nincremented in this function. Calling of_node_put() to avoid the\nrefcount leak. As the remove function do.", "A flaw was found in the xilinx_emaclite module in the Linux kernel. A memory leak can occur due to an improper error handling when a device can't be registered, potentially impacting system performance and possibly resulting in a denial of service."], "name": "CVE-2022-48860", "package_state": [{"cpe": "cpe:/o:redhat:enterprise_linux:6", "fix_state": "Out of support scope", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 6"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Out of support scope", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Out of support scope", "package_name": "kernel-rt", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 8"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Not affected", "package_name": "kernel-rt", "product_name": "Red Hat Enterprise Linux 8"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 9"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Not affected", "package_name": "kernel-rt", "product_name": "Red Hat Enterprise Linux 9"}], "public_date": "2024-07-16T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2022-48860\nhttps://nvd.nist.gov/vuln/detail/CVE-2022-48860\nhttps://lore.kernel.org/linux-cve-announce/2024071628-CVE-2022-48860-92e9@gregkh/T"], "statement": "The xilinx_emaclite module is not built in the kernel shipped in Red Hat Enterprise Linux 8 and 9, so it is not affected by this vulnerability.", "threat_severity": "Low"}

{

bugzilla : { »

description : kernel: ethernet: Fix error handling in xemaclite_of_probe (string)

id : 2298204 (string)

url : https://bugzilla.redhat.com/show_bug.cgi?id=2298204 (string)

}

csaw : false (boolean)

cvss3 : { »

cvss3_base_score : 5.5 (string)

cvss3_scoring_vector : CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H (string)

status : draft (string)

}

cwe : CWE-401 (string)

details : [ »

0 : In the Linux kernel, the following vulnerability has been resolved: ethernet: Fix error handling in xemaclite_of_probe This node pointer is returned by of_parse_phandle() with refcount incremented in this function. Calling of_node_put() to avoid the refcount leak. As the remove function do. (string)

1 : A flaw was found in the xilinx_emaclite module in the Linux kernel. A memory leak can occur due to an improper error handling when a device can't be registered, potentially impacting system performance and possibly resulting in a denial of service. (string)

]

name : CVE-2022-48860 (string)

package_state : [ »

0 : { »

cpe : cpe:/o:redhat:enterprise_linux:6 (string)

fix_state : Out of support scope (string)

package_name : kernel (string)

product_name : Red Hat Enterprise Linux 6 (string)

}

1 : { »

cpe : cpe:/o:redhat:enterprise_linux:7 (string)

fix_state : Out of support scope (string)

package_name : kernel (string)

product_name : Red Hat Enterprise Linux 7 (string)

}

2 : { »

cpe : cpe:/o:redhat:enterprise_linux:7 (string)

fix_state : Out of support scope (string)

package_name : kernel-rt (string)

product_name : Red Hat Enterprise Linux 7 (string)

}

3 : { »

cpe : cpe:/o:redhat:enterprise_linux:8 (string)

fix_state : Not affected (string)

package_name : kernel (string)

product_name : Red Hat Enterprise Linux 8 (string)

}

4 : { »

cpe : cpe:/o:redhat:enterprise_linux:8 (string)

fix_state : Not affected (string)

package_name : kernel-rt (string)

product_name : Red Hat Enterprise Linux 8 (string)

}

5 : { »

cpe : cpe:/o:redhat:enterprise_linux:9 (string)

fix_state : Not affected (string)

package_name : kernel (string)

product_name : Red Hat Enterprise Linux 9 (string)

}

6 : { »

cpe : cpe:/o:redhat:enterprise_linux:9 (string)

fix_state : Not affected (string)

package_name : kernel-rt (string)

product_name : Red Hat Enterprise Linux 9 (string)

}

]

public_date : 2024-07-16T00:00:00Z (string)

references : [ »

0 : https://www.cve.org/CVERecord?id=CVE-2022-48860 https://nvd.nist.gov/vuln/detail/CVE-2022-48860 https://lore.kernel.org/linux-cve-announce/2024071628-CVE-2022-48860-92e9@gregkh/T (string)

]

statement : The xilinx_emaclite module is not built in the kernel shipped in Red Hat Enterprise Linux 8 and 9, so it is not affected by this vulnerability. (string)

threat_severity : Low (string)

}

Metrics

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Exploitation none

Automatable no

Technical Impact partial

Affected Vendors & Products

Metrics

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Exploitation none

Automatable no

Technical Impact partial

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object