← back
CVE-2022-1419

CVE-2022-1419

EPSS 0.3%CWE-416
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS EPSS 0.3%KEV nãoPoC Nuclei Metasploit Patch referenciado
Lifecycle
31 May 2022Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
The root cause of this vulnerability is that the ioctl$DRM_IOCTL_MODE_DESTROY_DUMB can decrease refcount of *drm_vgem_gem_object *(created in *vgem_gem_dumb_create*) concurrently, and *vgem_gem_dumb_create *will access the freed drm_vgem_gem_object.
Affected products
n/a · kernel