QwikSec

Security Database

CVE

CWE

Training

CVE-2022-2873

Published: Aug 22, 2022

Modified: Aug 3, 2024

PUBLISHED

Description

An out-of-bounds memory access flaw was found in the Linux kernel Intel’s iSMT SMBus host controller driver in the way a user triggers the I2C_SMBUS_BLOCK_DATA (with the ioctl I2C_SMBUS) with malicious input data. This flaw allows a local user to crash the system.

Vendor	Product	Versions
n/a	Kernel	affected `Linux kernel 5.19-rc8`

Weaknesses (CWE)

References

https://lore.kernel.org/lkml/20220729093451.551672-1-zheyuma97%40gmail.com/T/

https://security.netapp.com/advisory/ntap-20230120-0001/

vendor-advisory

[debian-lts-announce] 20230302 [SECURITY] [DLA 3349-1] linux-5.10 security update

mailing-list

[debian-lts-announce] 20230503 [SECURITY] [DLA 3403-1] linux security update

mailing-list

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

CVE-2022-2873 - Security Vulnerability | QwikSec