What is CVE-2022-3707?

CVE-2022-3707 is a vulnerability in Kernel, classified under CWE-460. Published 2023-03-06.

Is CVE-2022-3707 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Kernel

CVE-2022-3707

A double-free memory flaw was found in the Linux kernel. The Intel GVT-g graphics driver triggers VGA card system resource overload, causing a fail in the intel_gvt_dma_map_guest_page function. This issue could allow a local user to crash…

EPSS: 0.000 (2.7th percentile) — read the EPSS interpretation.

Affected products

N/a Kernel — versions Linux kernel 6.1-rc3

Weakness classification (CWE)

CWE-460

Public proof-of-concept exploits

ARPSyndicate/cvemon

References

bugzilla.redhat.com/show_bug.cgi
lore.kernel.org/all/20221007013708.1946061-1-zyytlz.wz@163.com/
[debian-lts-announce] 20230502 [SECURITY] [DLA 3404-1] linux-5.10 security update (mailing-list)
[debian-lts-announce] 20230503 [SECURITY] [DLA 3403-1] linux security update (mailing-list)

Frequently asked questions

What is CVE-2022-3707?: CVE-2022-3707 is a vulnerability in Kernel, classified under CWE-460. Published 2023-03-06.
Is CVE-2022-3707 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.