CVE-2022-40540
published 2023-03-10CVE-2022-40540: Memory corruption due to buffer copy without checking the size of input while loading firmware in Linux Kernel.
PriorityP339high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
EPSS
0.17%
6.2th percentile
Memory corruption due to buffer copy without checking the size of input while loading firmware in Linux Kernel.
Affected
17 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| android | — | — | |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
CVSS provenance
nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
vendor_redhat8.4HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Red Hat
kenrel: Memory corruption due to buffer copy in qcom_mdt_read_metadata
vendor_redhat·2023-03-06·CVSS 8.4
CVE-2022-40540 [HIGH] CWE-120 kenrel: Memory corruption due to buffer copy in qcom_mdt_read_metadata
kenrel: Memory corruption due to buffer copy in qcom_mdt_read_metadata
Memory corruption due to buffer copy without checking the size of input while loading firmware in Linux Kernel.
A flaw was found in the Linux kernel. Memory corruption occurs to the buffer copy without checking the input size while loading firmware in qcom_mdt_read_metadata in drivers/soc/qcom/mdt_loader.c.
Statement: There was no shipped kernel version were seen affected with this problem. These files are not built in our source code.
Package: kernel (Red Hat Enterprise Linux 6) - Not affected
Package: kernel (Red Hat Enterprise Linux 7) - Not affected
Package: kernel-rt (Red Hat Enterprise Linux 7) - Not affected
Package: kernel (Red Hat Enterprise Linux 8) - Not affected
Package: kernel-rt (Red Hat Enterprise
Android
CVE-2022-40540: Kernel
vendor_android·2023-03-01·CVSS 8.4
CVE-2022-40540 [HIGH] CVE-2022-40540: Kernel
Android Security Bulletin 2023-03-01
CVE: CVE-2022-40540
Severity: HIGH
Component: Kernel
References: A-261470730
QC-CR#3280498
GHSA
GHSA-58jw-58x8-342p: Memory corruption due to buffer copy without checking the size of input while loading firmware in Linux Kernel
ghsa_unreviewed·2023-03-10
CVE-2022-40540 [HIGH] CWE-120 GHSA-58jw-58x8-342p: Memory corruption due to buffer copy without checking the size of input while loading firmware in Linux Kernel
Memory corruption due to buffer copy without checking the size of input while loading firmware in Linux Kernel.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
https://bugzilla.suse.com/show_bug.cgi?id=1209597https://security.netapp.com/advisory/ntap-20230616-0001/https://www.qualcomm.com/company/product-security/bulletins/march-2023-bulletinhttps://bugzilla.suse.com/show_bug.cgi?id=1209597https://security.netapp.com/advisory/ntap-20230616-0001/https://www.qualcomm.com/company/product-security/bulletins/march-2023-bulletin
2023-03-10
Published