Description
An issue was discovered in the Linux kernel before 5.16.12. drivers/net/usb/sr9700.c allows attackers to obtain sensitive information from heap memory via crafted frame lengths from a device.
No analysis available yet.
Remediation
No remediation available yet.
Tracking
Sign in to view the affected projects.
Advisories
| Source | ID | Title |
|---|---|---|
Debian DLA |
DLA-3065-1 | linux security update |
EUVD |
EUVD-2022-31509 | An issue was discovered in the Linux kernel before 5.16.12. drivers/net/usb/sr9700.c allows attackers to obtain sensitive information from heap memory via crafted frame lengths from a device. |
Ubuntu USN |
USN-5381-1 | Linux kernel (OEM) vulnerabilities |
Ubuntu USN |
USN-5417-1 | Linux kernel vulnerabilities |
Ubuntu USN |
USN-5418-1 | Linux kernel vulnerabilities |
Ubuntu USN |
USN-5467-1 | Linux kernel vulnerabilities |
References
History
Sun, 13 Jul 2025 13:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
epss
|
epss
|
Subscriptions
Debian
Subscribe
Debian Linux
Subscribe
Linux
Subscribe
Linux Kernel
Subscribe
Netapp
Subscribe
Active Iq Unified Manager
Subscribe
H300e
Subscribe
H300e Firmware
Subscribe
H300s
Subscribe
H300s Firmware
Subscribe
H410s
Subscribe
H410s Firmware
Subscribe
H500e
Subscribe
H500e Firmware
Subscribe
H500s
Subscribe
H500s Firmware
Subscribe
H700e
Subscribe
H700e Firmware
Subscribe
H700s
Subscribe
H700s Firmware
Subscribe
Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2024-08-03T05:18:39.313Z
Reserved: 2022-03-12T00:00:00.000Z
Link: CVE-2022-26966
No data.
Status : Modified
Published: 2022-03-12T22:15:08.690
Modified: 2026-06-17T04:36:14.093
Link: CVE-2022-26966
OpenCVE Enrichment
No data.
Weaknesses
-
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor
-
CWE-244
Improper Clearing of Heap Memory Before Release ('Heap Inspection')
- NVD-CWE-noinfo
Debian DLA
EUVD
Ubuntu USN