CVE-2022-48626

moxart: fix potential use-after-free on remove path

Description

In the Linux kernel, the following vulnerability has been resolved: moxart: fix potential use-after-free on remove path It was reported that the mmc host structure could be accessed after it was freed in moxart_remove(), so fix this by saving the base register of the device and using it instead of the pointer dereference.

References

Link	Tags
https://git.kernel.org/stable/c/f5dc193167591e88797262ec78515a0cbe79ff5f	patch
https://git.kernel.org/stable/c/e6f580d0b3349646d4ee1ce0057eb273e8fb7e2e	patch
https://git.kernel.org/stable/c/9c25d5ff1856b91bd4365e813f566cb59aaa9552	patch
https://git.kernel.org/stable/c/3a0a7ec5574b510b067cfc734b8bdb6564b31d4e	patch
https://git.kernel.org/stable/c/be93028d306dac9f5b59ebebd9ec7abcfc69c156	patch
https://git.kernel.org/stable/c/af0e6c49438b1596e4be8a267d218a0c88a42323	patch
https://git.kernel.org/stable/c/7f901d53f120d1921f84f7b9b118e87e94b403c5	patch
https://git.kernel.org/stable/c/bd2db32e7c3e35bd4d9b8bbff689434a50893546	patch

Frequently Asked Questions

What is the severity of CVE-2022-48626?: CVE-2022-48626 has been scored as a high severity vulnerability.
How to fix CVE-2022-48626?: To fix CVE-2022-48626, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2022-48626 being actively exploited in the wild?: As for now, there are no information to confirm that CVE-2022-48626 is being actively exploited. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2022-48626?: CVE-2022-48626 affects Linux Linux, Linux Linux.

Description

Category

CWE-416 – Use After Free

References

Frequently Asked Questions