CVE-2022-48720

In the Linux kernel, the following vulnerability has been resolved: net: macsec: Fix offload support for NETDEV_UNREGISTER event Current macsec netdev notify handler handles NETDEV_UNREGISTER event by releasing relevant SW resources only, this causes resources leak in case of macsec HW offload, as the underlay driver was not notified to clean it's macsec offload resources. Fix by calling the underlay driver to clean it's relevant resources by moving offload handling from macsec_dellink() to macsec_common_dellink() when handling NETDEV_UNREGISTER event.

CVSS v3 5.5 MEDIUM

5.5^/10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 3.6

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

References

Link	Resource
https://git.kernel.org/stable/c/2e7f5b6ee1a7a2c628253a95b0a95b582901ef1b	Patch
https://git.kernel.org/stable/c/8299be160aad8548071d080518712dec0df92bd5	Patch
https://git.kernel.org/stable/c/9cef24c8b76c1f6effe499d2f131807c90f7ce9a	Patch
https://git.kernel.org/stable/c/e7a0b3a0806dae3cc81931f0e83055ca2ac6f455	Patch
https://git.kernel.org/stable/c/2e7f5b6ee1a7a2c628253a95b0a95b582901ef1b	Patch
https://git.kernel.org/stable/c/8299be160aad8548071d080518712dec0df92bd5	Patch
https://git.kernel.org/stable/c/9cef24c8b76c1f6effe499d2f131807c90f7ce9a	Patch
https://git.kernel.org/stable/c/e7a0b3a0806dae3cc81931f0e83055ca2ac6f455	Patch

Configurations

Configuration 1 (hide)

OR	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel:5.17:rc1::::::
	cpe:2.3:o:linux:linux_kernel:5.17:rc2::::::

History

01 Oct 2025, 13:38

Type	Values Removed	Values Added
CPE		cpe:2.3:o:linux:linux_kernel:::::::: cpe:2.3:o:linux:linux_kernel:5.17:rc1:::::: cpe:2.3:o:linux:linux_kernel:5.17:rc2::::::
CWE		NVD-CWE-Other
References	~~() https://git.kernel.org/stable/c/2e7f5b6ee1a7a2c628253a95b0a95b582901ef1b -~~	() https://git.kernel.org/stable/c/2e7f5b6ee1a7a2c628253a95b0a95b582901ef1b - Patch
References	~~() https://git.kernel.org/stable/c/8299be160aad8548071d080518712dec0df92bd5 -~~	() https://git.kernel.org/stable/c/8299be160aad8548071d080518712dec0df92bd5 - Patch
References	~~() https://git.kernel.org/stable/c/9cef24c8b76c1f6effe499d2f131807c90f7ce9a -~~	() https://git.kernel.org/stable/c/9cef24c8b76c1f6effe499d2f131807c90f7ce9a - Patch
References	~~() https://git.kernel.org/stable/c/e7a0b3a0806dae3cc81931f0e83055ca2ac6f455 -~~	() https://git.kernel.org/stable/c/e7a0b3a0806dae3cc81931f0e83055ca2ac6f455 - Patch
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 5.5
First Time		Linux linux Kernel Linux

21 Nov 2024, 07:33

Type	Values Removed	Values Added
References	~~() https://git.kernel.org/stable/c/2e7f5b6ee1a7a2c628253a95b0a95b582901ef1b -~~	() https://git.kernel.org/stable/c/2e7f5b6ee1a7a2c628253a95b0a95b582901ef1b -
References	~~() https://git.kernel.org/stable/c/8299be160aad8548071d080518712dec0df92bd5 -~~	() https://git.kernel.org/stable/c/8299be160aad8548071d080518712dec0df92bd5 -
References	~~() https://git.kernel.org/stable/c/9cef24c8b76c1f6effe499d2f131807c90f7ce9a -~~	() https://git.kernel.org/stable/c/9cef24c8b76c1f6effe499d2f131807c90f7ce9a -
References	~~() https://git.kernel.org/stable/c/e7a0b3a0806dae3cc81931f0e83055ca2ac6f455 -~~	() https://git.kernel.org/stable/c/e7a0b3a0806dae3cc81931f0e83055ca2ac6f455 -

20 Jun 2024, 12:43

Type	Values Removed	Values Added
Summary		(es) En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: net: macsec: se corrigió el soporte de descarga para el evento NETDEV_UNREGISTER. El controlador de notificación netdev de macsec actual maneja el evento NETDEV_UNREGISTER liberando solo recursos SW relevantes, lo que provoca una pérdida de recursos en caso de descarga de HW de macsec, ya que No se notificó al controlador subyacente que limpiara sus recursos de descarga de macsec. Para solucionarlo, llame al controlador subyacente para limpiar sus recursos relevantes moviendo el manejo de descarga de macsec_dellink() a macsec_common_dellink() cuando se maneja el evento NETDEV_UNREGISTER.

20 Jun 2024, 11:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-06-20 11:15

Updated : 2025-10-01 13:38

NVD link : CVE-2022-48720

Mitre link : CVE-2022-48720

CVE.ORG link : CVE-2022-48720

JSON object : View

Products Affected

linux

linux_kernel

CWE

NVD-CWE-Other

5.5 /10