Description

In the Linux kernel, the following vulnerability has been resolved: NFC: nci: Bounds check struct nfc_target arrays While running under CONFIG_FORTIFY_SOURCE=y, syzkaller reported: memcpy: detected field-spanning write (size 129) of single field "target->sensf_res" at net/nfc/nci/ntf.c:260 (size 18) This appears to be a legitimate lack of bounds checking in nci_add_new_protocol(). Add the missing checks.

INFO

Published Date :

2024-10-21T20:05:49.740Z

Last Modified :

2025-05-04T08:27:06.188Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2022-48967 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2022-48967.

URL Resource
https://git.kernel.org/stable/c/27eb2d7a1b9987b6d0429b7716b1ff3b82c4ffc9 cve-icon cve-icon
https://git.kernel.org/stable/c/6778434706940b8fad7ef35f410d2b9929f256d2 cve-icon cve-icon
https://git.kernel.org/stable/c/6b37f0dc0638d13a006f2f24d2f6ca61e83bc714 cve-icon cve-icon
https://git.kernel.org/stable/c/908b2da426fe9c3ce74cf541ba40e7a4251db191 cve-icon cve-icon
https://git.kernel.org/stable/c/cff35329070b96b4484d23f9f48a5ca2c947e750 cve-icon cve-icon
https://git.kernel.org/stable/c/dbdcfb9f6748218a149f62468d6297ce3f014e9c cve-icon cve-icon
https://git.kernel.org/stable/c/e329e71013c9b5a4535b099208493c7826ee4a64 cve-icon cve-icon
https://git.kernel.org/stable/c/f41547546db9af99da2c34e3368664d7a79cefae cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2024102144-CVE-2022-48967-c2ae@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2022-48967 cve-icon
https://www.cve.org/CVERecord?id=CVE-2022-48967 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact