CVE-2022-48960

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2022-48960

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-48960.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2022-48960

Downstream

DEBIAN-CVE-2022-48960

OESA-2024-2370

OESA-2024-2371

SUSE-SU-2024:3983-1

SUSE-SU-2024:3985-1

SUSE-SU-2024:4081-1

SUSE-SU-2024:4082-1

SUSE-SU-2024:4100-1

SUSE-SU-2024:4103-1

SUSE-SU-2024:4131-1

SUSE-SU-2024:4140-1

SUSE-SU-2024:4364-1

SUSE-SU-2025:0034-1

UBUNTU-CVE-2022-48960

Related

Published

2024-10-21T20:05:45.167Z

Modified

2026-04-11T12:43:21.020154Z

Summary

net: hisilicon: Fix potential use-after-free in hix5hd2_rx()

Details

In the Linux kernel, the following vulnerability has been resolved:

net: hisilicon: Fix potential use-after-free in hix5hd2_rx()

The skb is delivered to napigroreceive() which may free it, after calling this, dereferencing skb may trigger use-after-free.

Database specific

{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/48xxx/CVE-2022-48960.json"
}

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

57c5bc9ad7d799e9507ba6e993398d2c55f03fab

Fixed

179499e7a240b2ef590f05eb379c810c26bbc8a4

Fixed

8067cd244cea2c332f8326842fd10158fa2cb64f

Fixed

3a4eddd1cb023a71df4152fcc76092953e6fe95a

Fixed

1b6360a093ab8969c91a30bb58b753282e2ced4c

Fixed

93aaa4bb72e388f6a4887541fd3d18b84f1b5ddc

Fixed

b8ce0e6f9f88a6bb49d291498377e61ea27a5387

Fixed

b6307f7a2fc1c5407b6176f2af34a95214a8c262

Fixed

433c07a13f59856e4585e89e86b7d4cc59348fab

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-48960.json"

Linux / Kernel

Package

Name: Kernel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

3.16.0

Fixed

4.9.336

Type: ECOSYSTEM
Events: Introduced

4.10.0

Fixed

4.14.302

Type: ECOSYSTEM
Events: Introduced

4.15.0

Fixed

4.19.269

Type: ECOSYSTEM
Events: Introduced

4.20.0

Fixed

5.4.227

Type: ECOSYSTEM
Events: Introduced

5.5.0

Fixed

5.10.159

Type: ECOSYSTEM
Events: Introduced

5.11.0

Fixed

5.15.83

Type: ECOSYSTEM
Events: Introduced

5.16.0

Fixed

6.0.13

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-48960.json"