CVE-2022-43750

Summary

CVE	CVE-2022-43750
State	PUBLIC
Assigner	[email protected]
Source Priority	CVE Program / NVD first with legacy fallback
Published	2022-10-26 04:15:00 UTC
Updated	2023-02-14 21:38:00 UTC
Description	drivers/usb/mon/mon_bin.c in usbmon in the Linux kernel before 5.19.15 and 6.x before 6.0.1 allows a user-space client to corrupt the monitor's internal memory.

Risk And Classification

Problem Types: CWE-787

NVD Known Affected Configurations (CPE 2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Operating System	Debian	Debian Linux	10.0	All	All	All
Operating System	Linux	Linux Kernel	All	All	All	All
Operating System	Linux	Linux Kernel	6.0	-	All	All
Operating System	Linux	Linux Kernel	6.0	rc1	All	All
Operating System	Linux	Linux Kernel	6.0	rc2	All	All
Operating System	Linux	Linux Kernel	6.0	rc3	All	All
Operating System	Linux	Linux Kernel	6.0	rc4	All	All
Operating System	Linux	Linux Kernel	6.0	rc5	All	All
Operating System	Linux	Linux Kernel	6.0	rc6	All	All
Operating System	Linux	Linux Kernel	6.0	rc7	All	All

References

Reference	Source	Link	Tags
[SECURITY] [DLA 3245-1] linux security update	MLIST	lists.debian.org
[SECURITY] [DLA 3173-1] linux-5.10 security update	MLIST	lists.debian.org
usb: mon: make mmapped memory read only · torvalds/linux@a659daf · GitHub	MISC	github.com
kernel/git/torvalds/linux.git - Linux kernel source tree	MISC	git.kernel.org
cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.19.15	MISC	cdn.kernel.org
cdn.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.0.1	MISC	cdn.kernel.org
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis

No vendor comments have been submitted for this CVE.

Legacy QID Mappings

160367 Oracle Enterprise Linux Security Update for unbreakable enterprise kernel (ELSA-2022-10108)
160568 Oracle Enterprise Linux Security Update for kernel (ELSA-2023-1987)
160583 Oracle Enterprise Linux Security Update for kernel (ELSA-2023-2458)
160692 Oracle Enterprise Linux Security Update for kernel (ELSA-2023-2951)
181164 Debian Security Update for linux (CVE-2022-43750)
181190 Debian Security Update for linux-5.10 (DLA 3173-1)
181565 Debian Security Update for linux (DLA 3245-1)
199087 Ubuntu Security Notification for Linux kernel Vulnerabilities (USN-5792-1)
199088 Ubuntu Security Notification for Linux kernel Vulnerabilities (USN-5791-1)
199089 Ubuntu Security Notification for Linux kernel Vulnerabilities (USN-5793-1)
199091 Ubuntu Security Notification for Linux kernel (Azure) Vulnerabilities (USN-5791-2)
199094 Ubuntu Security Notification for Linux kernel Vulnerabilities (USN-5792-2)
199096 Ubuntu Security Notification for Linux kernel (Azure) Vulnerabilities (USN-5793-2)
199098 Ubuntu Security Notification for Linux kernel (IBM) Vulnerabilities (USN-5793-4)
199099 Ubuntu Security Notification for Linux kernel Vulnerabilities (USN-5793-3)
199100 Ubuntu Security Notification for Linux kernel (Azure) Vulnerabilities (USN-5791-3)
199119 Ubuntu Security Notification for Linux kernel (BlueField) Vulnerabilities (USN-5815-1)
199155 Ubuntu Security Notification for Linux kernel Vulnerabilities (USN-5854-1)
199164 Ubuntu Security Notification for Linux kernel (Qualcomm Snapdragon) Vulnerabilities (USN-5862-1)
199165 Ubuntu Security Notification for Linux kernel (Dell300x) Vulnerabilities (USN-5861-1)
199169 Ubuntu Security Notification for Linux kernel (Azure) Vulnerabilities (USN-5865-1)
199179 Ubuntu Security Notification for Linux kernel (GKE) Vulnerabilities (USN-5877-1)
199210 Ubuntu Security Notification for Linux kernel (OEM) Vulnerabilities (USN-5913-1)
199502 Ubuntu Security Notification for Linux kernel Vulnerabilities (USN-5975-1)
199541 Ubuntu Security Notification for Linux kernel (Azure) Vulnerabilities (USN-5924-1)
199566 Ubuntu Security Notification for Linux kernel (GCP) Vulnerabilities (USN-6007-1)
199567 Ubuntu Security Notification for Linux kernel (HWE) Vulnerabilities (USN-5883-1)
199581 Ubuntu Security Notification for Linux kernel Vulnerabilities (USN-5919-1)
241390 Red Hat Update for kernel-rt (RHSA-2023:1988)
241393 Red Hat Update for kernel (RHSA-2023:1987)
241417 Red Hat Update for kernel security (RHSA-2023:2458)
241468 Red Hat Update for kernel-rt (RHSA-2023:2148)
241504 Red Hat Update for kernel security (RHSA-2023:2951)
241527 Red Hat Update for kernel-rt (RHSA-2023:2736)
242855 Red Hat Update for kernel (RHSA-2024:0412)
354251 Amazon Linux Security Advisory for kernel : ALAS-2022-1645
355199 Amazon Linux Security Advisory for kernel : ALAS2023-2023-070
377891 Alibaba Cloud Linux Security Update for cloud-kernel (ALINUX3-SA-2023:0002)
378043 Alibaba Cloud Linux Security Update for cloud-kernel (ALINUX2-SA-2023:0011)
390272 Oracle Managed Virtualization (VM) Server for x86 Security Update for kernel (OVMSA-2023-0001)
6140088 AWS Bottlerocket Security Update for kernel (GHSA-h342-w892-4fp5)
672495 EulerOS Security Update for kernel (EulerOS-SA-2023-1012)
672516 EulerOS Security Update for kernel (EulerOS-SA-2023-1037)
672532 EulerOS Security Update for kernel (EulerOS-SA-2023-1126)
672564 EulerOS Security Update for kernel (EulerOS-SA-2023-1102)
672595 EulerOS Security Update for kernel (EulerOS-SA-2023-1320)
672653 EulerOS Security Update for kernel (EulerOS-SA-2023-1388)
672668 EulerOS Security Update for kernel (EulerOS-SA-2023-1360)
672711 EulerOS Security Update for kernel (EulerOS-SA-2023-1507)
752813 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2022:3930-1)
752839 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2022:3929-1)
752880 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2022:4053-1)
752889 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2022:3897-1)
752911 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2022:3998-1)
752913 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2022:4072-1)
752944 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2022:4273-1)
752959 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2022:4272-1)
753038 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2022:4573-1)
753039 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2022:4574-1)
753051 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2022:4589-1)
753060 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2022:4615-1)
753063 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2022:4617-1)
753703 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2023:0416-1)
753707 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2023:0416-1)
753727 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2023:0416-1)
904355 Common Base Linux Mariner (CBL-Mariner) Security Update for kernel (11360)
904357 Common Base Linux Mariner (CBL-Mariner) Security Update for kernel (11354)
904502 Common Base Linux Mariner (CBL-Mariner) Security Update for kernel (11354-1)
904554 Common Base Linux Mariner (CBL-Mariner) Security Update for kernel (11360-1)
905938 Common Base Linux Mariner (CBL-Mariner) Security Update for kernel (11360-2)
906339 Common Base Linux Mariner (CBL-Mariner) Security Update for kernel (11354-2)
941023 AlmaLinux Security Update for kernel (ALSA-2023:2458)
941061 AlmaLinux Security Update for kernel-rt (ALSA-2023:2148)
941096 AlmaLinux Security Update for kernel (ALSA-2023:2951)
941114 AlmaLinux Security Update for kernel-rt (ALSA-2023:2736)