← Back

CVE-2022-49921

nvd nist
Published: May 1, 2025Modified: Jun 17, 2026

JSON object

Loading...
7.8
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Exploitability: 1.8 / Impact: 5.9
Source: NVD

Description

In the Linux kernel, the following vulnerability has been resolved: net: sched: Fix use after free in red_enqueue() We can't use "skb" again after passing it to qdisc_enqueue(). This is basically identical to commit 2f09707d0c97 ("sch_sfb: Also store skb len before calling child enqueue").

Affected (11)

Products: Linux: Linux Kernel
1 product
Linux Kernel
Configuration A
11 vulnerable
Vulnerable SoftwareAffected Versions
Linux
From 4.10 to 4.14.299
From 4.15 to 4.19.265
From 4.20 to 5.4.224
From 4.4.163 to 4.5
From 4.7 to 4.9.333
From 5.11 to 5.15.78
From 5.16 to 6.0.8
From 5.5 to 5.10.154
Version 6.1 rc1
Version 6.1 rc2
Version 6.1 rc3

References (8)

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67
Patch
Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67
Patch
Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67
Patch
Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67
Patch
Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67
Patch
Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67
Patch
Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67
Patch
Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67
Patch

Timeline

No history available yet.