Vulnerabilities > CVE-2022-3108 - Unchecked Return Value vulnerability in Linux Kernel 5.16.0

047910
CVSS 5.5 - MEDIUM
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
LOW
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
HIGH
local
low complexity
linux
CWE-252

Summary

An issue was discovered in the Linux kernel through 5.16-rc6. kfd_parse_subtype_iolink in drivers/gpu/drm/amd/amdkfd/kfd_crat.c lacks check of the return value of kmemdup().

Vulnerable Configurations

Part Description Count
OS
Linux
7

Common Weakness Enumeration (CWE)