CVE-2022-48730

dma-buf: heaps: Fix potential spectre v1 gadget

Description

In the Linux kernel, the following vulnerability has been resolved: dma-buf: heaps: Fix potential spectre v1 gadget It appears like nr could be a Spectre v1 gadget as it's supplied by a user and used as an array index. Prevent the contents of kernel memory from being leaked to userspace via speculative execution by using array_index_nospec. [sumits: added fixes and cc: stable tags]

References

Link	Tags
https://git.kernel.org/stable/c/5d40f1bdad3dd1a177f21a90ad4353c1ed40ba3a	patch
https://git.kernel.org/stable/c/24f8e12d965b24f8aea762589e0e9fe2025c005e	patch
https://git.kernel.org/stable/c/cc8f7940d9c2d45f67b3d1a2f2b7a829ca561bed	patch
https://git.kernel.org/stable/c/92c4cfaee6872038563c5b6f2e8e613f9d84d47d	patch

Frequently Asked Questions

What is the severity of CVE-2022-48730?: CVE-2022-48730 has been scored as a medium severity vulnerability.
How to fix CVE-2022-48730?: To fix CVE-2022-48730, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2022-48730 being actively exploited in the wild?: As for now, there are no information to confirm that CVE-2022-48730 is being actively exploited. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2022-48730?: CVE-2022-48730 affects Linux Linux, Linux Linux.

This platform uses data from the NIST NVD, MITRE CVE, MITRE CWE, First.org and CISA KEV but is not endorsed or certified by these entities. CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site.

Description

Category

CWE-203 – Observable Discrepancy

References

Frequently Asked Questions