Vulnerabilities > CVE-2022-3108 - Unchecked Return Value vulnerability in Linux Kernel

047910
CVSS 5.5 - MEDIUM
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
LOW
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
HIGH
local
low complexity
linux
CWE-252
NVD
Published: 2022-12-14
Updated: 2022-12-16

Summary

An issue was discovered in the Linux kernel through 5.16-rc6. kfd_parse_subtype_iolink in drivers/gpu/drm/amd/amdkfd/kfd_crat.c lacks check of the return value of kmemdup().

Vulnerable Configurations

Part Description Count
OS
Linux
5167

Common Weakness Enumeration (CWE)

References