CVE-2022-48667

medium

Description

In the Linux kernel, the following vulnerability has been resolved: smb3: fix temporary data corruption in insert range insert range doesn't discard the affected cached region so can risk temporarily corrupting file data. Also includes some minor cleanup (avoiding rereading inode size repeatedly unnecessarily) to make it clearer.

References

https://git.kernel.org/stable/c/9c8b7a293f50253e694f19161c045817a938e551

https://git.kernel.org/stable/c/0cdde8460c304283d4ebe3f767a70215d1ab9d4e

Details

Source: Mitre, NVD

Published: 2024-04-28

Updated: 2024-04-29

Risk Information

CVSS v2

Base Score: 3.2

Vector: CVSS2#AV:L/AC:L/Au:S/C:N/I:P/A:P

Severity: Low

CVSS v3

Base Score: 4.4

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L

Severity: Medium