PT-2024-8455 · Linux+4 · Linux Kernel+4

Published

2022-09-20

Updated

2026-03-14

CVE-2022-48645

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The vulnerability is related to the Linux kernel's enetc driver, which allows for the configuration of TSN features through a mix of command BD ring messages and port registers. However, attempting to access these registers from Virtual Functions crashes the kernel. The issue is resolved by splitting the enetc setup tc() function into separate functions for the PF and VF drivers and removing enetc qos.o from being included into enetc-vf.ko.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Race Condition

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-362

Related Identifiers

BDU:2024-10015

CVE-2022-48645

OESA-2024-1682

OPENSUSE-SU-2024_3190-1

OPENSUSE-SU-2024_3209-1

OPENSUSE-SU-2024_3483-1

SUSE-SU-2024:3190-1

SUSE-SU-2024:3209-1

SUSE-SU-2024:3483-1

Affected Products

Astra Linux

Debian

Linux Kernel

Red Os

Suse

PT-2024-8455 · Linux+4 · Linux Kernel+4

CVE-2022-48645

Weakness Enumeration

Related Identifiers

Affected Products

References · 749