CVE-2022-48787
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2022-48787
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-48787.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2022-48787
- Downstream
- Related
- Published
- 2024-07-16T12:15:03Z
- Modified
- 2025-08-09T19:01:28Z
- Severity
-
- 7.8 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- [none]
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
iwlwifi: fix use-after-free
If no firmware was present at all (or, presumably, all of the firmware files failed to parse), we end up unbinding by calling devicereleasedriver(), which calls remove(), which then in iwlwifi calls iwldrvstop(), freeing the 'drv' struct. However the new code I added will still erroneously access it after it was freed.
Set 'failure=false' in this case to avoid the access, all data was already freed anyway.
- References
-
- https://git.kernel.org/stable/c/008508c16af0087cda0394e1ac6f0493b01b6063
- https://git.kernel.org/stable/c/494de920d98f125b099f27a2d274850750aff957
- https://git.kernel.org/stable/c/7d6475179b85a83186ccce59cdc359d4f07d0bcb
- https://git.kernel.org/stable/c/9958b9cbb22145295ee1ffaea0904c383da2c05d
- https://git.kernel.org/stable/c/bea2662e7818e15d7607d17d57912ac984275d94
- https://git.kernel.org/stable/c/d3b98fe36f8a06ce654049540773256ab59cb53d
- https://git.kernel.org/stable/c/ddd46059f7d99119b62d44c519df7a79f2e6a515