PT-2022-7618 · Linux+4 · Linux Kernel+4

Sukadev Bhattiprolu

Published

2022-02-25

Updated

2025-09-29

CVE-2022-48905

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to commit 8d0657f39f487d904fca713e0bc39c2707382553 Linux kernel versions prior to March 8, 2022

Description The vulnerability is related to a memory leak in the ibmvnic component of the Linux kernel. It can be exploited to cause a denial of service. The issue is caused by a tiny memory leak when flushing the reset work queue.

Recommendations Update to the version after commit 8d0657f39f487d904fca713e0bc39c2707382553 to resolve the issue. Update to the latest Linux kernel releases to ensure security. For versions prior to March 8, 2022, update to versions released on or after March 8, 2022, to remediate the vulnerability.

Exploit

Fix

DoS

Memory Leak

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-401

Related Identifiers

ALSA-2025_16880

BDU:2024-07462

CVE-2022-48905

OESA-2024-2122

OPENSUSE-SU-2024_3190-1

OPENSUSE-SU-2024_3209-1

OPENSUSE-SU-2024_3249-1

OPENSUSE-SU-2024_3408-1

OPENSUSE-SU-2024_3483-1

RHSA-2022:7933

RHSA-2022:8267

RHSA-2022_7933

RHSA-2022_8267

SUSE-SU-2024:3189-1

SUSE-SU-2024:3190-1

SUSE-SU-2024:3209-1

SUSE-SU-2024:3225-1

SUSE-SU-2024:3227-1

SUSE-SU-2024:3249-1

SUSE-SU-2024:3251-1

SUSE-SU-2024:3252-1

SUSE-SU-2024:3408-1

SUSE-SU-2024:3483-1

Affected Products

Astra Linux

Linux Kernel

Red Hat

Red Os

Suse

PT-2022-7618 · Linux+4 · Linux Kernel+4

CVE-2022-48905

Weakness Enumeration

Related Identifiers

Affected Products

References · 845