Vulnerability DatabaseCVE-2022-28390

CVE-2022-28390:
Linux Kernel vulnerability analysis and mitigation

Overview

CVE-2022-28390 is a double free vulnerability discovered in the emsusbstartxmit function in drivers/net/can/usb/emsusb.c of the Linux kernel through version 5.17.1. The vulnerability affects the EMS CPC-USB/ARM7 CAN/USB interface driver (NVD, Debian Security).

Technical details

The vulnerability is classified as a double free flaw in the emsusbstartxmit function, where devkfreeskb() is called unnecessarily when usbsubmiturb() fails, as canputechoskb() already deletes the original skb and canfreeecho_skb() deletes the cloned skb (Linux Commit). The vulnerability has been assigned a CVSS v3.1 Base Score of 7.8 (HIGH) with vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H (NVD).

Impact

When successfully exploited, this vulnerability could lead to disclosure of sensitive information, addition or modification of data, or Denial of Service (DoS). The vulnerability requires local access to the system (NetApp Advisory).

Mitigation and workarounds

The vulnerability has been fixed in multiple Linux distributions. Debian has addressed it in version 5.10.113-1 for the stable distribution (bullseye) (Debian Security). Fedora has released fixes in kernel versions 5.16.19-200.fc35, 5.17.2-300.fc36, and 5.16.19-100.fc34 (Fedora Updates).

Additional resources

Source: This report was generated using AI

View vulnerable instances

Not a Wiz customer?

Request vulnerability assessment

7.8

Score

Published April 3, 2022

Severity HIGH

CNA Score N/A

Affected Technologies

Linux Kernel
Bottlerocket

Has Public Exploit No

Has CISA KEV Exploit No

CISA KEV Release Date N/A

CISA KEV Due Date N/A

Exploitation Probability Percentile (EPSS) 1.6

Exploitation Probability (EPSS) N/A

Affected packages and libraries

kernel-rt-debug-modules-extra
kernel-azure-optional

Sources

NVD
AlmaLinux Security Advisory
- AlmaLinux 8 Severity MEDIUMHas FixAdded at: Nov 12, 2022
- AlmaLinux 9 Severity MEDIUMHas FixAdded at: Nov 19, 2022
Bottlerocket GitHub Security Advisories
- Bottlerocket Severity MEDIUMHas FixAdded at: Dec 01, 2022
CBL-Mariner
- CBL-Mariner 1.0, 2.0 Severity HIGHHas FixAdded at: Jun 10, 2023
Debian Security Tracker
- Debian 9 Severity HIGHHas FixAdded at: Jul 01, 2022
- Debian 10 Severity HIGHHas FixAdded at: Jul 03, 2022
- Debian 11 Severity HIGHHas FixAdded at: May 03, 2022
- Debian 12 Severity HIGHHas FixAdded at: Apr 26, 2022
- Debian 13 Severity HIGHHas FixAdded at: Jun 11, 2023
Red Hat Errata
- Red Hat 6 Severity MEDIUMNo FixAdded at: Apr 22, 2023
- Red Hat 7 Severity MEDIUMNo FixAdded at: Apr 30, 2022
- Red Hat 8 Severity MEDIUMHas FixAdded at: Apr 30, 2022
- Red Hat 9 Severity MEDIUMHas FixAdded at: Sep 06, 2022
Rocky Linux Product Errata
- Rocky 8 Severity MEDIUMHas FixAdded at: May 14, 2023
Ubuntu Security Tracker
- Ubuntu 14.04, 16.04, 20.04 Severity MEDIUMHas FixAdded at: May 12, 2022
- Ubuntu 18.04 Severity MEDIUMHas FixAdded at: Jun 08, 2022
- Ubuntu 21.10, 22.04 Severity MEDIUMHas FixAdded at: Nov 01, 2022