Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
CVE Vulnerability Details :
CVE-2022-48804
PUBLISHED
More InfoOfficial Page
Assigner-Linux
Assigner Org ID-416baaa9-dc9f-4396-8d5f-8c081fb06d67
View Known Exploited Vulnerability (KEV) details
Published At-16 Jul, 2024 | 11:43
Updated At-23 May, 2026 | 15:20
Rejected At-
▼CVE Numbering Authority (CNA)
vt_ioctl: fix array_index_nospec in vt_setactivate

In the Linux kernel, the following vulnerability has been resolved: vt_ioctl: fix array_index_nospec in vt_setactivate array_index_nospec ensures that an out-of-bounds value is set to zero on the transient path. Decreasing the value by one afterwards causes a transient integer underflow. vsa.console should be decreased first and then sanitized with array_index_nospec. Kasper Acknowledgements: Jakob Koschel, Brian Johannesmeyer, Kaveh Razavi, Herbert Bos, Cristiano Giuffrida from the VUSec group at VU Amsterdam.

Affected Products
Vendor
Linux Kernel Organization, IncLinux
Product
Linux
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Program Files
  • drivers/tty/vt/vt_ioctl.c
Default Status
unaffected
Versions
Affected
  • From 0ec459ec174031fad02a55e622cf2fc0d2e75a25 before 830c5aa302ec16b4ee641aec769462c37f802c90 (git)
  • From 4334a6ae867aa12f01c1755368fd0de4c926ac75 before 2a45a6bd1e6d651770aafff57ab3e1d3bb0b42e0 (git)
  • From e97267cb4d1ee01ca0929638ec0fcbb0904f903d before 170325aba4608bde3e7d21c9c19b7bc266ac0885 (git)
  • From e97267cb4d1ee01ca0929638ec0fcbb0904f903d before ae3d57411562260ee3f4fd5e875f410002341104 (git)
  • From e97267cb4d1ee01ca0929638ec0fcbb0904f903d before 778302ca09498b448620edd372dc908bebf80bdf (git)
  • From e97267cb4d1ee01ca0929638ec0fcbb0904f903d before ffe54289b02e9c732d6f04c8ebbe3b2d90d32118 (git)
  • From e97267cb4d1ee01ca0929638ec0fcbb0904f903d before 6550bdf52846f85a2a3726a5aa0c7c4399f2fc02 (git)
  • From e97267cb4d1ee01ca0929638ec0fcbb0904f903d before 61cc70d9e8ef5b042d4ed87994d20100ec8896d9 (git)
  • 458697ab18b512445ac273ce68a9f8fd623fc0a3 (git)
  • 1aa698b65186c13ed775896ed1dfec7c26c73d60 (git)
  • 52ef74c21c277e50de771fc722d814a830b3036b (git)
  • From 4.9.130 before 4.9.302 (semver)
  • From 4.14.73 before 4.14.267 (semver)
  • From 3.16.62 before 3.17 (semver)
  • From 4.4.159 before 4.5 (semver)
  • From 4.18.11 before 4.19 (semver)
Vendor
Linux Kernel Organization, IncLinux
Product
Linux
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Program Files
  • drivers/tty/vt/vt_ioctl.c
Default Status
affected
Versions
Affected
  • 4.19
Unaffected
  • From 0 before 4.19 (semver)
  • From 4.9.302 through 4.9.* (semver)
  • From 4.14.267 through 4.14.* (semver)
  • From 4.19.230 through 4.19.* (semver)
  • From 5.4.180 through 5.4.* (semver)
  • From 5.10.101 through 5.10.* (semver)
  • From 5.15.24 through 5.15.* (semver)
  • From 5.16.10 through 5.16.* (semver)
  • From 5.17 through * (original_commit_for_fix)
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://git.kernel.org/stable/c/830c5aa302ec16b4ee641aec769462c37f802c90
N/A
https://git.kernel.org/stable/c/2a45a6bd1e6d651770aafff57ab3e1d3bb0b42e0
N/A
https://git.kernel.org/stable/c/170325aba4608bde3e7d21c9c19b7bc266ac0885
N/A
https://git.kernel.org/stable/c/ae3d57411562260ee3f4fd5e875f410002341104
N/A
https://git.kernel.org/stable/c/778302ca09498b448620edd372dc908bebf80bdf
N/A
https://git.kernel.org/stable/c/ffe54289b02e9c732d6f04c8ebbe3b2d90d32118
N/A
https://git.kernel.org/stable/c/6550bdf52846f85a2a3726a5aa0c7c4399f2fc02
N/A
https://git.kernel.org/stable/c/61cc70d9e8ef5b042d4ed87994d20100ec8896d9
N/A
Hyperlink: https://git.kernel.org/stable/c/830c5aa302ec16b4ee641aec769462c37f802c90
Resource: N/A
Hyperlink: https://git.kernel.org/stable/c/2a45a6bd1e6d651770aafff57ab3e1d3bb0b42e0
Resource: N/A
Hyperlink: https://git.kernel.org/stable/c/170325aba4608bde3e7d21c9c19b7bc266ac0885
Resource: N/A
Hyperlink: https://git.kernel.org/stable/c/ae3d57411562260ee3f4fd5e875f410002341104
Resource: N/A
Hyperlink: https://git.kernel.org/stable/c/778302ca09498b448620edd372dc908bebf80bdf
Resource: N/A
Hyperlink: https://git.kernel.org/stable/c/ffe54289b02e9c732d6f04c8ebbe3b2d90d32118
Resource: N/A
Hyperlink: https://git.kernel.org/stable/c/6550bdf52846f85a2a3726a5aa0c7c4399f2fc02
Resource: N/A
Hyperlink: https://git.kernel.org/stable/c/61cc70d9e8ef5b042d4ed87994d20100ec8896d9
Resource: N/A
▼Authorized Data Publishers (ADP)
1. CVE Program Container
Affected Products
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://git.kernel.org/stable/c/830c5aa302ec16b4ee641aec769462c37f802c90
x_transferred
https://git.kernel.org/stable/c/2a45a6bd1e6d651770aafff57ab3e1d3bb0b42e0
x_transferred
https://git.kernel.org/stable/c/170325aba4608bde3e7d21c9c19b7bc266ac0885
x_transferred
https://git.kernel.org/stable/c/ae3d57411562260ee3f4fd5e875f410002341104
x_transferred
https://git.kernel.org/stable/c/778302ca09498b448620edd372dc908bebf80bdf
x_transferred
https://git.kernel.org/stable/c/ffe54289b02e9c732d6f04c8ebbe3b2d90d32118
x_transferred
https://git.kernel.org/stable/c/6550bdf52846f85a2a3726a5aa0c7c4399f2fc02
x_transferred
https://git.kernel.org/stable/c/61cc70d9e8ef5b042d4ed87994d20100ec8896d9
x_transferred
Hyperlink: https://git.kernel.org/stable/c/830c5aa302ec16b4ee641aec769462c37f802c90
Resource:
x_transferred
Hyperlink: https://git.kernel.org/stable/c/2a45a6bd1e6d651770aafff57ab3e1d3bb0b42e0
Resource:
x_transferred
Hyperlink: https://git.kernel.org/stable/c/170325aba4608bde3e7d21c9c19b7bc266ac0885
Resource:
x_transferred
Hyperlink: https://git.kernel.org/stable/c/ae3d57411562260ee3f4fd5e875f410002341104
Resource:
x_transferred
Hyperlink: https://git.kernel.org/stable/c/778302ca09498b448620edd372dc908bebf80bdf
Resource:
x_transferred
Hyperlink: https://git.kernel.org/stable/c/ffe54289b02e9c732d6f04c8ebbe3b2d90d32118
Resource:
x_transferred
Hyperlink: https://git.kernel.org/stable/c/6550bdf52846f85a2a3726a5aa0c7c4399f2fc02
Resource:
x_transferred
Hyperlink: https://git.kernel.org/stable/c/61cc70d9e8ef5b042d4ed87994d20100ec8896d9
Resource:
x_transferred
2. CISA ADP Vulnrichment
Affected Products
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
Details not found