🛡️ UBUNTU-CVE-2022-48945
⚪ Unknown ✅ No Known Exploit OSV
N/A
CVSS Score
0 Low4 Medium7 High9 Critical10

Description

In the Linux kernel, the following vulnerability has been resolved: media: vivid: fix compose size exceed boundary syzkaller found a bug: BUG: unable to handle page fault for address: ffffc9000a3b1000 #PF: supervisor write access in kernel mode #PF: error_code(0x0002) - not-present page PGD 100000067 P4D 100000067 PUD 10015f067 PMD 1121ca067 PTE 0 Oops: 0002 [#1] PREEMPT SMP CPU: 0 PID: 23489 Comm: vivid-000-vid-c Not tainted 6.1.0-rc1+ #512 Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.13.0-1ubuntu1.1 04/01/2014 RIP: 0010:memcpy_erms+0x6/0x10 [...] Call Trace: ? tpg_fill_plane_buffer+0x856/0x15b0 vivid_fillbuff+0x8ac/0x1110 vivid_thread_vid_cap_tick+0x361/0xc90 vivid_thread_vid_cap+0x21a/0x3a0 kthread+0x143/0x180 ret_from_fork+0x1f/0x30 This is because we forget to check boundary after adjust compose->height int V4L2_SEL_TGT_CROP case. Add v4l2_rect_map_inside() to fix this problem for this case.

Details

Severity Unknown
CVSS Score N/A
CVSS Vector CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CWE N/A
Public Exploit ✅ No
Source OSV
Published 2024-09-23
Updated 2026-06-15
Modified 2026-06-04
Fix URL N/A

Affected Packages

Software From version Fixed in
linux 5.15.0-69.76
linux-allwinner-5.19
linux-aws 5.15.0-1033.37
linux-aws-5.0
linux-aws-5.11
linux-aws-5.13
linux-aws-5.15 5.15.0-1033.37~20.04.1
linux-aws-5.19
linux-aws-5.3
linux-aws-5.4 5.4.0-1097.105~18.04.1
linux-aws-5.8
linux-aws-6.2
linux-aws-6.5
linux-aws-fips
linux-aws-hwe 4.15.0-1153.166~16.04.1
linux-azure 5.15.0-1035.42
linux-azure-4.15 4.15.0-1162.177
linux-azure-5.11
linux-azure-5.13
linux-azure-5.15 5.15.0-1035.42~20.04.1
linux-azure-5.19
linux-azure-5.3
linux-azure-5.4 5.4.0-1104.110~18.04.1
linux-azure-5.8
linux-azure-6.2
linux-azure-6.5
linux-azure-edge
linux-azure-fde 5.15.0-1035.42.1
linux-azure-fde-5.19
linux-azure-fde-6.2
linux-azure-fips
linux-bluefield
linux-fips
linux-gcp 5.15.0-1031.38
linux-gcp-4.15 4.15.0-1147.163
linux-gcp-5.11
linux-gcp-5.13
linux-gcp-5.15 5.15.0-1031.38~20.04.1
linux-gcp-5.19
linux-gcp-5.3
linux-gcp-5.4 5.4.0-1101.110~18.04.1
linux-gcp-5.8
linux-gcp-6.2
linux-gcp-6.5
linux-gcp-fips
linux-gke 5.15.0-1030.35
linux-gke-4.15
linux-gke-5.15
linux-gke-5.4
linux-gkeop 5.15.0-1017.22
linux-gkeop-5.15 5.15.0-1017.22~20.04.1
linux-gkeop-5.4
linux-hwe
linux-hwe-5.11
linux-hwe-5.13
linux-hwe-5.15 5.15.0-69.76~20.04.1
linux-hwe-5.19
linux-hwe-5.4 5.4.0-144.161~18.04.1
linux-hwe-5.8
linux-hwe-6.2
linux-hwe-6.5
linux-hwe-edge
linux-ibm 5.15.0-1027.30
linux-ibm-5.4 5.4.0-1045.50~18.04.1
linux-intel-5.13
linux-intel-iot-realtime 5.15.0-1023.28
linux-intel-iotg 5.15.0-1027.32
linux-intel-iotg-5.15 5.15.0-1027.32~20.04.1
linux-iot 5.4.0-1013.15
linux-kvm 5.15.0-1030.35
linux-lowlatency 5.15.0-69.76
linux-lowlatency-hwe-5.15 5.15.0-69.76~20.04.1
linux-lowlatency-hwe-5.19
linux-lowlatency-hwe-6.2
linux-lowlatency-hwe-6.5
linux-lts-xenial
linux-nvidia 5.15.0-1023.23
linux-nvidia-6.2
linux-nvidia-tegra-5.15 5.15.0-1014.14~20.04.1
linux-oem
linux-oem-5.10
linux-oem-5.13
linux-oem-5.14
linux-oem-5.17
linux-oem-5.6
linux-oem-6.0
linux-oem-6.1
linux-oem-6.5
linux-oracle 5.15.0-1032.38
linux-oracle-5.0
linux-oracle-5.11
linux-oracle-5.13
linux-oracle-5.15 5.15.0-1032.38~20.04.1
linux-oracle-5.3
linux-oracle-5.4 5.4.0-1094.103~18.04.1
linux-oracle-5.8
linux-oracle-6.5
linux-raspi 5.15.0-1026.28
linux-raspi-5.4 5.4.0-1081.92~18.04.1
linux-raspi-realtime
linux-raspi2
linux-realtime 5.15.0-1034.37
linux-riscv
linux-riscv-5.11
linux-riscv-5.15 5.15.0-1030.34~20.04.1
linux-riscv-5.19
linux-riscv-5.8
linux-riscv-6.5
linux-starfive-5.19
linux-starfive-6.2
linux-starfive-6.5
linux-xilinx-zynqmp 5.4.0-1022.26

References

Similar Threats

Vulnerability Monitoring

Stay informed about vulnerabilities in your stack

BotEraser monitors your WordPress installation and notifies you when software you use appears in our vulnerability database.

Set Up Free Alerts →

No credit card required  ·  Results in minutes

ⓘ Data Notice: The information presented above has been compiled from publicly available internet sources. Boteraser aggregates this data solely for informational purposes and does not independently classify, evaluate, or endorse any findings about the vulnerabilities listed. The accuracy and completeness of this information is the sole responsibility of the original publishers. Boteraser and its operators accept no liability for any decisions made based on this data.