NVD Vulnerability Detail

CVE-2022-48962

Summary	In the Linux kernel, the following vulnerability has been resolved: net: hisilicon: Fix potential use-after-free in hisi_femac_rx() The skb is delivered to napi_gro_receive() which may free it, after calling this, dereferencing skb may trigger use-after-free.
Publication Date	Oct. 22, 2024, 5:15 a.m.
Registration Date	Oct. 22, 2024, 12:01 p.m.
Last Update	Oct. 25, 2024, 4:27 a.m.

Affected software configurations

Related information, measures and tools

No	URL	タグ
1	https://git.kernel.org/stable/c/3501da8eb6d0f5f114a09ec953c54423f6f35885	Patch
2	https://git.kernel.org/stable/c/196e12671cb629d9f3b77b4d8bec854fc445533a	Patch
3	https://git.kernel.org/stable/c/aceec8ab752428d8e151321479e82cc1a40fee2e	Patch
4	https://git.kernel.org/stable/c/e71a46cc8c9ad75f3bb0e4b361e81f79c0214cca	Patch
5	https://git.kernel.org/stable/c/296a50aa8b2982117520713edc1375777a9f8506	Patch
6	https://git.kernel.org/stable/c/6f4798ac9c9e98f41553c4f5e6c832c8860a6942	Patch
7	https://git.kernel.org/stable/c/8595a2db8eb0ffcbb466eb9f4a7507a5ba06ebb9	Patch
8	https://git.kernel.org/stable/c/4640177049549de1a43e9bc49265f0cdfce08cfd	Patch

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-416	解放済みメモリの使用	https://cwe.mitre.org/data/definitions/416.html

JVN Vulnerability Information

Linux の Linux Kernel における解放済みメモリの使用に関する脆弱性

Title	Linux の Linux Kernel における解放済みメモリの使用に関する脆弱性
Summary	Linux の Linux Kernel には、解放済みメモリの使用に関する脆弱性が存在します。
Possible impacts	情報を取得される、情報を改ざんされる、およびサービス運用妨害 (DoS) 状態にされる可能性があります。
Solution	ベンダより正式な対策が公開されています。ベンダ情報を参照して適切な対策を実施してください。
Publication Date	Dec. 6, 2022, midnight
Registration Date	Oct. 28, 2024, 5:09 p.m.
Last Update	Dec. 15, 2025, 2:48 p.m.

Affected System

Linux

Linux Kernel 4.10 以上 4.14.302 未満

Linux Kernel 4.15 以上 4.19.269 未満

Linux Kernel 4.20 以上 5.4.227 未満

Linux Kernel 4.8 以上 4.9.336 未満

Linux Kernel 5.11 以上 5.15.83 未満

Linux Kernel 5.16 以上 6.0.13 未満

Linux Kernel 5.5 以上 5.10.159 未満

Linux Kernel 6.1

CVE (情報セキュリティ共通脆弱性識別子)

No	Name	URL
Common Vulnerabilities and Exposures (CVE)
1	CVE-2022-48962	https://www.cve.org/CVERecord?id=CVE-2022-48962
National Vulnerability Database (NVD)
2	CVE-2022-48962	https://nvd.nist.gov/vuln/detail/CVE-2022-48962

CWE (共通脆弱性タイプ一覧)

No	Name	URL
JVNDB
1	CWE-416	https://cwe.mitre.org/data/definitions/416.html

ベンダー情報

No	Name	URL
Kernel.org git repositories
1	net: hisilicon: Fix potential use-after-free in hisi_femac_rx() (196e126)	https://git.kernel.org/stable/c/196e12671cb629d9f3b77b4d8bec854fc445533a
2	net: hisilicon: Fix potential use-after-free in hisi_femac_rx() (296a50a)	https://git.kernel.org/stable/c/296a50aa8b2982117520713edc1375777a9f8506
3	net: hisilicon: Fix potential use-after-free in hisi_femac_rx() (3501da8)	https://git.kernel.org/stable/c/3501da8eb6d0f5f114a09ec953c54423f6f35885
4	net: hisilicon: Fix potential use-after-free in hisi_femac_rx() (4640177)	https://git.kernel.org/stable/c/4640177049549de1a43e9bc49265f0cdfce08cfd
5	net: hisilicon: Fix potential use-after-free in hisi_femac_rx() (6f4798a)	https://git.kernel.org/stable/c/6f4798ac9c9e98f41553c4f5e6c832c8860a6942
6	net: hisilicon: Fix potential use-after-free in hisi_femac_rx() (8595a2d)	https://git.kernel.org/stable/c/8595a2db8eb0ffcbb466eb9f4a7507a5ba06ebb9
7	net: hisilicon: Fix potential use-after-free in hisi_femac_rx() (aceec8a)	https://git.kernel.org/stable/c/aceec8ab752428d8e151321479e82cc1a40fee2e
8	net: hisilicon: Fix potential use-after-free in hisi_femac_rx() (e71a46c)	https://git.kernel.org/stable/c/e71a46cc8c9ad75f3bb0e4b361e81f79c0214cca
Linux Kernel
9	Linux Kernel Archives	https://www.kernel.org

その他

No	Name	URL
JVN
1	JVNVU#99514792	https://jvn.jp/vu/JVNVU99514792/index.html

Change Log

No	Changed Details	Date of change
1	[2024年10月28日] 掲載	Oct. 28, 2024, 5:05 p.m.
2	[2025年12月15日] 参考情報：JVN (JVNVU#99514792) を追加	Dec. 15, 2025, 2:09 p.m.