CVE-2022-48686

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2022-48686

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-48686.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2022-48686

Downstream

DEBIAN-CVE-2022-48686

OESA-2024-2080

RHSA-2024:10262

RHSA-2024:6998

SUSE-SU-2024:1642-1

SUSE-SU-2024:1644-1

SUSE-SU-2024:1645-1

SUSE-SU-2024:1659-1

SUSE-SU-2024:1663-1

SUSE-SU-2024:1979-1

SUSE-SU-2024:1983-1

SUSE-SU-2024:2011-1

SUSE-SU-2024:2184-1

SUSE-SU-2024:2189-1

SUSE-SU-2024:3249-1

SUSE-SU-2024:3499-1

SUSE-SU-2025:0091-1

SUSE-SU-2025:0094-1

SUSE-SU-2025:0100-1

SUSE-SU-2025:0103-1

SUSE-SU-2025:0231-1

UBUNTU-CVE-2022-48686

Related

Published

2024-05-03T15:15:07Z

Modified

2025-08-09T20:01:26Z

Severity

7.8 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

In the Linux kernel, the following vulnerability has been resolved:

nvme-tcp: fix UAF when detecting digest errors

We should also bail from the iowork loop when we set rdenabled to true, so we don't attempt to read data from the socket when the TCP stream is already out-of-sync or corrupted.

References

Affected packages