CVE-2022-48779: 
Linux Debian vulnerability analysis and mitigation

CVE-2022-48779 is a use-after-free vulnerability in the Linux kernel's MSCC Ocelot network driver. The vulnerability was discovered in the ocelotvlandel() function and affects Linux kernel versions from 5.16 up to (excluding) 5.16.11. The issue was disclosed on July 16, 2024 (NVD).

The vulnerability occurs in the ocelotvlandel() function where ocelotvlanmemberdel() frees the struct ocelotbridgevlan, but if this is the same as the port's pvidvlan which is accessed afterwards, it results in accessing freed memory. The issue has been assigned a CVSS v3.1 Base Score of 7.8 HIGH with vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H (NVD, Kernel Patch).

The vulnerability could allow an attacker with local access to cause a use-after-free condition, potentially leading to privilege escalation, information disclosure, or system crashes. The high CVSS score indicates that successful exploitation could result in complete compromise of confidentiality, integrity, and availability of the affected system (NVD).

The vulnerability has been fixed in Linux kernel version 5.16.11. The fix involves determining whether to clear ocelotport->pvidvlan prior to calling ocelotvlanmember_del(). Users should upgrade to Linux kernel version 5.16.11 or later to mitigate this vulnerability (Kernel Patch).