Vulnerability in Linux

CVE-2022-50677

In the Linux kernel, the following vulnerability has been resolved: ipmi: fix use after free in _ipmi_destroy_user() The intf_free() function frees the "intf" pointer so we cannot dereference it again on the next line.

EPSS: 0.002 (11.4th percentile) — read the EPSS interpretation.

Affected products

  • Linux — versions 6.2, 6.1.4, 5.4.229

References