CVE-2022-48804
- Source
- https://cve.org/CVERecord?id=CVE-2022-48804
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-48804.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2022-48804
- Downstream
- Related
- Published
- 2024-07-16T11:43:56.278Z
- Modified
- 2026-04-11T12:41:18.930823Z
- Summary
- vt_ioctl: fix array_index_nospec in vt_setactivate
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
vtioctl: fix arrayindexnospec in vtsetactivate
arrayindexnospec ensures that an out-of-bounds value is set to zero on the transient path. Decreasing the value by one afterwards causes a transient integer underflow. vsa.console should be decreased first and then sanitized with arrayindexnospec.
Kasper Acknowledgements: Jakob Koschel, Brian Johannesmeyer, Kaveh Razavi, Herbert Bos, Cristiano Giuffrida from the VUSec group at VU Amsterdam.
- Database specific
{ "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/48xxx/CVE-2022-48804.json", "cna_assigner": "Linux" }- References
-
- https://git.kernel.org/stable/c/170325aba4608bde3e7d21c9c19b7bc266ac0885
- https://git.kernel.org/stable/c/2a45a6bd1e6d651770aafff57ab3e1d3bb0b42e0
- https://git.kernel.org/stable/c/61cc70d9e8ef5b042d4ed87994d20100ec8896d9
- https://git.kernel.org/stable/c/6550bdf52846f85a2a3726a5aa0c7c4399f2fc02
- https://git.kernel.org/stable/c/778302ca09498b448620edd372dc908bebf80bdf
- https://git.kernel.org/stable/c/830c5aa302ec16b4ee641aec769462c37f802c90
- https://git.kernel.org/stable/c/ae3d57411562260ee3f4fd5e875f410002341104
- https://git.kernel.org/stable/c/ffe54289b02e9c732d6f04c8ebbe3b2d90d32118
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/48xxx/CVE-2022-48804.json
- https://nvd.nist.gov/vuln/detail/CVE-2022-48804
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced0ec459ec174031fad02a55e622cf2fc0d2e75a25Fixed830c5aa302ec16b4ee641aec769462c37f802c90
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced4334a6ae867aa12f01c1755368fd0de4c926ac75Fixed2a45a6bd1e6d651770aafff57ab3e1d3bb0b42e0
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducede97267cb4d1ee01ca0929638ec0fcbb0904f903dFixed170325aba4608bde3e7d21c9c19b7bc266ac0885Fixedae3d57411562260ee3f4fd5e875f410002341104Fixed778302ca09498b448620edd372dc908bebf80bdfFixedffe54289b02e9c732d6f04c8ebbe3b2d90d32118Fixed6550bdf52846f85a2a3726a5aa0c7c4399f2fc02Fixed61cc70d9e8ef5b042d4ed87994d20100ec8896d9
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedLast affected458697ab18b512445ac273ce68a9f8fd623fc0a3Last affected1aa698b65186c13ed775896ed1dfec7c26c73d60Last affected52ef74c21c277e50de771fc722d814a830b3036b
Linux / Kernel
Package
- Name
- Kernel
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed4.9.302
- Type
- ECOSYSTEM
- Events
-
Introduced4.10.0Fixed4.14.267
- Type
- ECOSYSTEM
- Events
-
Introduced4.15.0Fixed4.19.230
- Type
- ECOSYSTEM
- Events
-
Introduced4.19.0Fixed5.4.180
- Type
- ECOSYSTEM
- Events
-
Introduced4.20.0Fixed5.10.101
- Type
- ECOSYSTEM
- Events
-
Introduced5.5.0Fixed5.15.24
- Type
- ECOSYSTEM
- Events
-
Introduced5.11.0Fixed5.16.10