[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2022-48839":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T08:53:30.047Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":23,"aliases":24,"duplicate_of":9,"upstream":25,"downstream":26,"duplicates":57,"related":58,"reserved_at":9,"published_at":72,"modified_at":73,"state":74,"summary":75,"references_raw":84,"kevs":120,"epss":121,"epss_history":124,"metrics":354,"affected":360},"CVE-2022-48839","In the Linux kernel, the following vulnerability has been resolved:\n\nnet/packet: fix slab-out-of-bounds access in packet_recvmsg()\n\nsyzbot found that when an AF_PACKET socket is using PACKET_COPY_THRESH\nand mmap operations, tpacket_rcv() is queueing skbs with\ngarbage in skb->cb[], triggering a too big copy [1]\n\nPresumably, users of af_packet using mmap() already gets correct\nmetadata from the mapped buffer, we can simply make sure\nto clear 12 bytes that might be copied to user space later.\n\nBUG: KASAN: stack-out-of-bounds in memcpy include/linux/fortify-string.h:225 [inline]\nBUG: KASAN: stack-out-of-bounds in packet_recvmsg+0x56c/0x1150 net/packet/af_packet.c:3489\nWrite of size 165 at addr ffffc9000385fb78 by task syz-executor233/3631\n\nCPU: 0 PID: 3631 Comm: syz-executor233 Not tainted 5.17.0-rc7-syzkaller-02396-g0b3660695e80 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011\nCall Trace:\n \u003CTASK>\n __dump_stack lib/dump_stack.c:88 [inline]\n dump_stack_lvl+0xcd/0x134 lib/dump_stack.c:106\n print_address_description.constprop.0.cold+0xf/0x336 mm/kasan/report.c:255\n __kasan_report mm/kasan/report.c:442 [inline]\n kasan_report.cold+0x83/0xdf mm/kasan/report.c:459\n check_region_inline mm/kasan/generic.c:183 [inline]\n kasan_check_range+0x13d/0x180 mm/kasan/generic.c:189\n memcpy+0x39/0x60 mm/kasan/shadow.c:66\n memcpy include/linux/fortify-string.h:225 [inline]\n packet_recvmsg+0x56c/0x1150 net/packet/af_packet.c:3489\n sock_recvmsg_nosec net/socket.c:948 [inline]\n sock_recvmsg net/socket.c:966 [inline]\n sock_recvmsg net/socket.c:962 [inline]\n ____sys_recvmsg+0x2c4/0x600 net/socket.c:2632\n ___sys_recvmsg+0x127/0x200 net/socket.c:2674\n __sys_recvmsg+0xe2/0x1a0 net/socket.c:2704\n do_syscall_x64 arch/x86/entry/common.c:50 [inline]\n do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80\n entry_SYSCALL_64_after_hwframe+0x44/0xae\nRIP: 0033:0x7fdfd5954c29\nCode: 28 00 00 00 75 05 48 83 c4 28 c3 e8 41 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003C48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48\nRSP: 002b:00007ffcf8e71e48 EFLAGS: 00000246 ORIG_RAX: 000000000000002f\nRAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007fdfd5954c29\nRDX: 0000000000000000 RSI: 0000000020000500 RDI: 0000000000000005\nRBP: 0000000000000000 R08: 000000000000000d R09: 000000000000000d\nR10: 0000000000000000 R11: 0000000000000246 R12: 00007ffcf8e71e60\nR13: 00000000000f4240 R14: 000000000000c1ff R15: 00007ffcf8e71e54\n \u003C/TASK>\n\naddr ffffc9000385fb78 is located in stack of task syz-executor233/3631 at offset 32 in frame:\n ____sys_recvmsg+0x0/0x600 include/linux/uio.h:246\n\nthis frame has 1 object:\n [32, 160) 'addr'\n\nMemory state around the buggy address:\n ffffc9000385fa80: 00 04 f3 f3 f3 f3 f3 00 00 00 00 00 00 00 00 00\n ffffc9000385fb00: 00 00 00 00 00 00 00 00 00 00 00 f1 f1 f1 f1 00\n>ffffc9000385fb80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 f3\n                                                                ^\n ffffc9000385fc00: f3 f3 f3 00 00 00 00 00 00 00 00 00 00 00 00 f1\n ffffc9000385fc80: f1 f1 f1 00 f2 f2 f2 00 f2 f2 f2 00 00 00 00 00\n==================================================================",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":9,"capec":18},"CWE-125","Out-of-bounds Read","The product reads data past the end, or before the beginning, of the intended buffer.","weakness","Draft","Base",[19],{"id":20,"name":21,"techniques":22},"CAPEC-540","Overread Buffers",[],[],[],[],[27,29,31,33,35,37,39,41,43,45,47,49,51,53,55],{"_key":28},"SUSE-SU-2024:2894-1",{"_key":30},"SUSE-SU-2024:2892-1",{"_key":32},"SUSE-SU-2024:2901-1",{"_key":34},"SUSE-SU-2024:2902-1",{"_key":36},"SUSE-SU-2024:2929-1",{"_key":38},"SUSE-SU-2024:2940-1",{"_key":40},"SUSE-SU-2024:3225-1",{"_key":42},"SUSE-SU-2024:3249-1",{"_key":44},"SUSE-SU-2024:3467-1",{"_key":46},"SUSE-SU-2024:3499-1",{"_key":48},"SUSE-SU-2025:0152-1",{"_key":50},"SUSE-SU-2024:2939-1",{"_key":52},"SUSE-SU-2024:2947-1",{"_key":54},"DEBIAN-CVE-2022-48839",{"_key":56},"UBUNTU-CVE-2022-48839",[],[59,60,61,62,63,64,65,66,67,68,69,70,71],{"_key":28},{"_key":30},{"_key":32},{"_key":34},{"_key":36},{"_key":38},{"_key":40},{"_key":42},{"_key":44},{"_key":46},{"_key":48},{"_key":50},{"_key":52},"2024-07-16T12:25:10.521Z","2026-05-11T18:48:09.788Z","Modified",{"cisa_kev":76,"cisa_ransomware":76,"cisa_vendor":9,"epss_severity":77,"epss_score":78,"severity":79,"severity_score":80,"severity_version":81,"severity_source":82,"severity_vector":83,"severity_status":74},false,"low",0.00012,"medium",5.5,"v3.1","nvd","CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",[85,92,96,100,104,108,112,116],{"url":86,"sources":87,"tags":89},"https://git.kernel.org/stable/c/b9d5772d60f8e7ef34e290f72fc20e3a4883e7d0",[88,82],"cve.org",[90,91],"Mailing List","Patch",{"url":93,"sources":94,"tags":95},"https://git.kernel.org/stable/c/b1e27cda1e3c12b705875bb7e247a97168580e33",[88,82],[90,91],{"url":97,"sources":98,"tags":99},"https://git.kernel.org/stable/c/a33dd1e6693f80d805155b3f69c18c2f642915da",[88,82],[90,91],{"url":101,"sources":102,"tags":103},"https://git.kernel.org/stable/c/268dcf1f7b3193bc446ec3d14e08a240e9561e4d",[88,82],[90,91],{"url":105,"sources":106,"tags":107},"https://git.kernel.org/stable/c/70b7b3c055fd4a464da8da55ff4c1f84269f9b02",[88,82],[90,91],{"url":109,"sources":110,"tags":111},"https://git.kernel.org/stable/c/a055f5f2841f7522b44a2b1eccb1951b4b03d51a",[88,82],[90,91],{"url":113,"sources":114,"tags":115},"https://git.kernel.org/stable/c/ef591b35176029fdefea38e8388ffa371e18f4b2",[88,82],[90,91],{"url":117,"sources":118,"tags":119},"https://git.kernel.org/stable/c/c700525fcc06b05adfea78039de02628af79e07a",[88,82],[90,91],[],{"date":122,"score":78,"percentile":123},"2026-06-03",0.01631,[125,129,131,134,136,139,142,144,147,150,152,155,157,159,161,165,168,171,174,176,178,180,182,184,186,188,190,192,194,197,199,201,204,206,208,211,214,216,219,222,225,228,230,232,235,237,239,241,244,246,249,252,254,256,260,263,266,268,271,273,276,278,281,284,287,290,292,294,296,298,300,302,304,307,309,311,314,317,319,322,325,328,331,333,336,339,342,345,348,351],{"date":126,"score":127,"percentile":128},"2025-11-04",0.00006,0.00298,{"date":130,"score":127,"percentile":128},"2025-11-05",{"date":132,"score":127,"percentile":133},"2025-11-06",0.003,{"date":135,"score":127,"percentile":128},"2025-11-07",{"date":137,"score":127,"percentile":138},"2025-11-08",0.00296,{"date":140,"score":127,"percentile":141},"2025-11-09",0.00295,{"date":143,"score":127,"percentile":138},"2025-11-10",{"date":145,"score":127,"percentile":146},"2025-11-11",0.00293,{"date":148,"score":127,"percentile":149},"2025-11-12",0.0029,{"date":151,"score":127,"percentile":149},"2025-11-13",{"date":153,"score":127,"percentile":154},"2025-11-14",0.00289,{"date":156,"score":127,"percentile":154},"2025-11-15",{"date":158,"score":127,"percentile":154},"2025-11-16",{"date":160,"score":127,"percentile":154},"2025-11-17",{"date":162,"score":163,"percentile":164},"2025-11-18",0.00071,0.17788,{"date":166,"score":163,"percentile":167},"2025-11-19",0.17811,{"date":169,"score":163,"percentile":170},"2025-11-20",0.17785,{"date":172,"score":127,"percentile":173},"2025-11-21",0.00294,{"date":175,"score":127,"percentile":173},"2025-11-22",{"date":177,"score":127,"percentile":173},"2025-11-23",{"date":179,"score":127,"percentile":173},"2025-11-24",{"date":181,"score":127,"percentile":173},"2025-11-25",{"date":183,"score":127,"percentile":173},"2025-11-26",{"date":185,"score":127,"percentile":146},"2025-11-27",{"date":187,"score":127,"percentile":128},"2025-11-28",{"date":189,"score":127,"percentile":128},"2025-11-29",{"date":191,"score":127,"percentile":128},"2025-11-30",{"date":193,"score":127,"percentile":138},"2025-12-01",{"date":195,"score":127,"percentile":196},"2025-12-02",0.00297,{"date":198,"score":127,"percentile":196},"2025-12-03",{"date":200,"score":127,"percentile":133},"2025-12-04",{"date":202,"score":127,"percentile":203},"2025-12-05",0.00301,{"date":205,"score":127,"percentile":133},"2025-12-06",{"date":207,"score":127,"percentile":133},"2025-12-07",{"date":209,"score":127,"percentile":210},"2025-12-08",0.00305,{"date":212,"score":127,"percentile":213},"2025-12-09",0.00315,{"date":215,"score":127,"percentile":213},"2025-12-10",{"date":217,"score":127,"percentile":218},"2025-12-11",0.00318,{"date":220,"score":127,"percentile":221},"2025-12-12",0.00322,{"date":223,"score":127,"percentile":224},"2025-12-13",0.00321,{"date":226,"score":127,"percentile":227},"2025-12-14",0.00316,{"date":229,"score":127,"percentile":213},"2025-12-15",{"date":231,"score":127,"percentile":213},"2025-12-16",{"date":233,"score":127,"percentile":234},"2025-12-17",0.00314,{"date":236,"score":127,"percentile":234},"2025-12-18",{"date":238,"score":127,"percentile":234},"2025-12-19",{"date":240,"score":127,"percentile":234},"2025-12-20",{"date":242,"score":127,"percentile":243},"2025-12-21",0.00313,{"date":245,"score":127,"percentile":243},"2025-12-22",{"date":247,"score":127,"percentile":248},"2025-12-23",0.00312,{"date":250,"score":127,"percentile":251},"2025-12-24",0.00311,{"date":253,"score":127,"percentile":251},"2025-12-25",{"date":255,"score":127,"percentile":251},"2025-12-26",{"date":257,"score":258,"percentile":259},"2025-12-27",0.00007,0.00371,{"date":261,"score":127,"percentile":262},"2025-12-28",0.0031,{"date":264,"score":258,"percentile":265},"2025-12-29",0.00375,{"date":267,"score":258,"percentile":259},"2025-12-30",{"date":269,"score":258,"percentile":270},"2025-12-31",0.0037,{"date":272,"score":258,"percentile":259},"2026-01-01",{"date":274,"score":258,"percentile":275},"2026-01-02",0.00373,{"date":277,"score":258,"percentile":275},"2026-01-03",{"date":279,"score":258,"percentile":280},"2026-01-04",0.00368,{"date":282,"score":258,"percentile":283},"2026-01-05",0.00366,{"date":285,"score":258,"percentile":286},"2026-01-06",0.00365,{"date":288,"score":258,"percentile":289},"2026-01-07",0.00364,{"date":291,"score":258,"percentile":283},"2026-01-08",{"date":293,"score":258,"percentile":270},"2026-01-09",{"date":295,"score":258,"percentile":259},"2026-01-10",{"date":297,"score":258,"percentile":280},"2026-01-11",{"date":299,"score":258,"percentile":286},"2026-01-12",{"date":301,"score":258,"percentile":286},"2026-01-13",{"date":303,"score":258,"percentile":280},"2026-01-14",{"date":305,"score":258,"percentile":306},"2026-01-15",0.00369,{"date":308,"score":258,"percentile":270},"2026-01-16",{"date":310,"score":258,"percentile":306},"2026-01-17",{"date":312,"score":258,"percentile":313},"2026-01-18",0.00374,{"date":315,"score":258,"percentile":316},"2026-01-19",0.00372,{"date":318,"score":258,"percentile":306},"2026-01-20",{"date":320,"score":258,"percentile":321},"2026-01-21",0.00398,{"date":323,"score":258,"percentile":324},"2026-01-22",0.00399,{"date":326,"score":258,"percentile":327},"2026-01-23",0.00402,{"date":329,"score":258,"percentile":330},"2026-01-24",0.00404,{"date":332,"score":258,"percentile":330},"2026-01-25",{"date":334,"score":258,"percentile":335},"2026-01-26",0.00407,{"date":337,"score":258,"percentile":338},"2026-01-27",0.00412,{"date":340,"score":258,"percentile":341},"2026-01-28",0.00415,{"date":343,"score":258,"percentile":344},"2026-01-29",0.00417,{"date":346,"score":258,"percentile":347},"2026-01-30",0.00428,{"date":349,"score":258,"percentile":350},"2026-01-31",0.00431,{"date":352,"score":258,"percentile":353},"2026-02-01",0.00432,[355],{"source":82,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":356,"cvss_v4_0":9},{"baseScore":80,"baseSeverity":357,"vectorString":83,"impactScore":358,"exploitabilityScore":359},"MEDIUM",6,4.6,[361,396],{"ecosystem":9,"name":362,"vendor":363,"product":363,"cpe_part":364,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":365},"Linux","linux","a",[366,373,376,379,382,385,388,391,394],{"version":367,"is_range":368,"range_type":88,"version_start":369,"version_start_type":370,"version_end":371,"version_end_type":372,"fixed_in":9},">= 0fb375fb9b93b7d822debc6a734052337ccfdb1f, \u003C b9d5772d60f8e7ef34e290f72fc20e3a4883e7d0",true,"0fb375fb9b93b7d822debc6a734052337ccfdb1f","including","b9d5772d60f8e7ef34e290f72fc20e3a4883e7d0","excluding",{"version":374,"is_range":368,"range_type":88,"version_start":369,"version_start_type":370,"version_end":375,"version_end_type":372,"fixed_in":9},">= 0fb375fb9b93b7d822debc6a734052337ccfdb1f, \u003C b1e27cda1e3c12b705875bb7e247a97168580e33","b1e27cda1e3c12b705875bb7e247a97168580e33",{"version":377,"is_range":368,"range_type":88,"version_start":369,"version_start_type":370,"version_end":378,"version_end_type":372,"fixed_in":9},">= 0fb375fb9b93b7d822debc6a734052337ccfdb1f, \u003C a33dd1e6693f80d805155b3f69c18c2f642915da","a33dd1e6693f80d805155b3f69c18c2f642915da",{"version":380,"is_range":368,"range_type":88,"version_start":369,"version_start_type":370,"version_end":381,"version_end_type":372,"fixed_in":9},">= 0fb375fb9b93b7d822debc6a734052337ccfdb1f, \u003C 268dcf1f7b3193bc446ec3d14e08a240e9561e4d","268dcf1f7b3193bc446ec3d14e08a240e9561e4d",{"version":383,"is_range":368,"range_type":88,"version_start":369,"version_start_type":370,"version_end":384,"version_end_type":372,"fixed_in":9},">= 0fb375fb9b93b7d822debc6a734052337ccfdb1f, \u003C 70b7b3c055fd4a464da8da55ff4c1f84269f9b02","70b7b3c055fd4a464da8da55ff4c1f84269f9b02",{"version":386,"is_range":368,"range_type":88,"version_start":369,"version_start_type":370,"version_end":387,"version_end_type":372,"fixed_in":9},">= 0fb375fb9b93b7d822debc6a734052337ccfdb1f, \u003C a055f5f2841f7522b44a2b1eccb1951b4b03d51a","a055f5f2841f7522b44a2b1eccb1951b4b03d51a",{"version":389,"is_range":368,"range_type":88,"version_start":369,"version_start_type":370,"version_end":390,"version_end_type":372,"fixed_in":9},">= 0fb375fb9b93b7d822debc6a734052337ccfdb1f, \u003C ef591b35176029fdefea38e8388ffa371e18f4b2","ef591b35176029fdefea38e8388ffa371e18f4b2",{"version":392,"is_range":368,"range_type":88,"version_start":369,"version_start_type":370,"version_end":393,"version_end_type":372,"fixed_in":9},">= 0fb375fb9b93b7d822debc6a734052337ccfdb1f, \u003C c700525fcc06b05adfea78039de02628af79e07a","c700525fcc06b05adfea78039de02628af79e07a",{"version":395,"is_range":76,"range_type":88,"version_start":395,"version_start_type":370,"version_end":395,"version_end_type":370,"fixed_in":9},"2.6.14",{"ecosystem":9,"name":397,"vendor":363,"product":398,"cpe_part":399,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":400},"linux kernel","linux_kernel","o",[401,405,409,413,417,421,425],{"version":402,"is_range":368,"range_type":403,"version_start":395,"version_start_type":370,"version_end":404,"version_end_type":372,"fixed_in":9},"gte2.6.14_lt4.9.308","cpe","4.9.308",{"version":406,"is_range":368,"range_type":403,"version_start":407,"version_start_type":370,"version_end":408,"version_end_type":372,"fixed_in":9},"gte4.10_lt4.14.273","4.10","4.14.273",{"version":410,"is_range":368,"range_type":403,"version_start":411,"version_start_type":370,"version_end":412,"version_end_type":372,"fixed_in":9},"gte4.15_lt4.19.236","4.15","4.19.236",{"version":414,"is_range":368,"range_type":403,"version_start":415,"version_start_type":370,"version_end":416,"version_end_type":372,"fixed_in":9},"gte4.20_lt5.4.187","4.20","5.4.187",{"version":418,"is_range":368,"range_type":403,"version_start":419,"version_start_type":370,"version_end":420,"version_end_type":372,"fixed_in":9},"gte5.5_lt5.10.108","5.5","5.10.108",{"version":422,"is_range":368,"range_type":403,"version_start":423,"version_start_type":370,"version_end":424,"version_end_type":372,"fixed_in":9},"gte5.11_lt5.15.31","5.11","5.15.31",{"version":426,"is_range":368,"range_type":403,"version_start":427,"version_start_type":370,"version_end":428,"version_end_type":372,"fixed_in":9},"gte5.16_lt5.16.17","5.16","5.16.17"]