Vulnerabilities > CVE-2022-4842 - NULL Pointer Dereference vulnerability in Linux Kernel 6.2

CVSS 5.5 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

local

low complexity

linux

CWE-476

NVD

Published: 2023-01-12

Updated: 2023-11-07

Summary

A flaw NULL Pointer Dereference in the Linux kernel NTFS3 driver function attr_punch_hole() was found. A local user could use this flaw to crash the system.

Vulnerable Configurations

Part	Description	Count
OS	Linux Linux Linux Kernel 6.2	1

Common Weakness Enumeration (CWE)

CWE-476 - NULL Pointer Dereference

References

https://lore.kernel.org/ntfs3/784f82c4-de71-b8c3-afd6-468869a369af%40paragon-software.com/T/#t