Back to search
CVE-2022-48899
Published: Aug 21, 2024
Modified: May 11, 2026
PUBLISHED
Description
In the Linux kernel, the following vulnerability has been resolved: drm/virtio: Fix GEM handle creation UAF Userspace can guess the handle value and try to race GEM object creation with handle close, resulting in a use-after-free if we dereference the object after dropping the handle's reference. For that reason, dropping the handle's reference must be done *after* we are done dereferencing the object.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 62fb7a5e10962ac6ae2a2d2dbd3aedcb2a3e3257 - < 19ec87d06acfab2313ee82b2a689bf0c154e57eaaffected 62fb7a5e10962ac6ae2a2d2dbd3aedcb2a3e3257 - < d01d6d2b06c0d8390adf8f3ba08aa60b5642ef73affected 62fb7a5e10962ac6ae2a2d2dbd3aedcb2a3e3257 - < 68bcd063857075d2f9edfed6024387ac377923e2affected 62fb7a5e10962ac6ae2a2d2dbd3aedcb2a3e3257 - < 011ecdbcd520c90c344b872ca6b4821f7783b2f8affected 62fb7a5e10962ac6ae2a2d2dbd3aedcb2a3e3257 - < adc48e5e408afbb01d261bd303fd9fbbbaa3e317+1 more versions |
Linux | Linux | affected 4.4unaffected 0 - < 4.4unaffected 4.19.270 - <= 4.19.*unaffected 5.4.229 - <= 5.4.*unaffected 5.10.164 - <= 5.10.*+3 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now