QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2022-48697

Back to search

CVE-2022-48697

Published: May 3, 2024

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: nvmet: fix a use-after-free Fix the following use-after-free complaint triggered by blktests nvme/004: BUG: KASAN: user-memory-access in blk_mq_complete_request_remote+0xac/0x350 Read of size 4 at addr 0000607bd1835943 by task kworker/13:1/460 Workqueue: nvmet-wq nvme_loop_execute_work [nvme_loop] Call Trace: show_stack+0x52/0x58 dump_stack_lvl+0x49/0x5e print_report.cold+0x36/0x1e2 kasan_report+0xb9/0xf0 __asan_load4+0x6b/0x80 blk_mq_complete_request_remote+0xac/0x350 nvme_loop_queue_response+0x1df/0x275 [nvme_loop] __nvmet_req_complete+0x132/0x4f0 [nvmet] nvmet_req_complete+0x15/0x40 [nvmet] nvmet_execute_io_connect+0x18a/0x1f0 [nvmet] nvme_loop_execute_work+0x20/0x30 [nvme_loop] process_one_work+0x56e/0xa70 worker_thread+0x2d1/0x640 kthread+0x183/0x1c0 ret_from_fork+0x1f/0x30

VendorProductVersions

Linux

Linux

affected
a07b4970f464f13640e28e16dad6cfa33647cc99 - < 17f121ca3ec6be0fb32d77c7f65362934a38cc8e
affected
a07b4970f464f13640e28e16dad6cfa33647cc99 - < 8d66989b5f7bb28bba2f8e1e2ffc8bfef4a10717
affected
a07b4970f464f13640e28e16dad6cfa33647cc99 - < be01f1c988757b95f11f090a9f491365670a522b
affected
a07b4970f464f13640e28e16dad6cfa33647cc99 - < ebf46da50beb78066674354ad650606a467e33fa
affected
a07b4970f464f13640e28e16dad6cfa33647cc99 - < 4484ce97a78171668c402e0c45db7f760aea8060

+1 more versions

Linux

Linux

affected
4.8
unaffected
0 - < 4.8
unaffected
4.19.260 - <= 4.19.*
unaffected
5.4.213 - <= 5.4.*
unaffected
5.10.143 - <= 5.10.*

+3 more versions

References

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now