Home > Vulnerability Database > CVE-2022-4139

Mend.io Vulnerability Database

CVE-2022-4139

Good to know:

Date: January 26, 2023

An incorrect TLB flush issue was found in the Linux kernel’s GPU i915 kernel driver, potentially leading to random memory corruption or data leaks. This flaw could allow a local user to crash the system or escalate their privileges on the system.

Language: C

Severity Score

7.8

Related Resources (8)

Url: https://access.redhat.com/security/cve/CVE-2022-4139

Url: https://bugzilla.redhat.com/show_bug.cgi?id=2147572

Url: https://security.netapp.com/advisory/ntap-20230309-0004/

Url: https://nvd.nist.gov/vuln/detail/CVE-2022-4139

Url: https://security-tracker.debian.org/tracker/CVE-2022-4139

Url: https://people.canonical.com/~ubuntu-security/cve/CVE-2022-4139

Url: https://www.openwall.com/lists/oss-security/2022/11/30/1

Url: https://www.mend.io/vulnerability-database/CVE-2022-4139

Severity Score

7.8

Weakness Type (CWE)

Missing Release of Memory after Effective Lifetime

CWE-401

Improper Preservation of Permissions

CWE-281

Top Fix

Upgrade Version

Upgrade to version v6.0.11

Learn More

CVSS v3.1

Base Score:	7.8
Attack Vector (AV):	LOCAL
Attack Complexity (AC):	LOW
Privileges Required (PR):	LOW
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	HIGH
Integrity (I):	HIGH
Availability (A):	HIGH

Mend.io Vulnerability Database

We found results for “”

CVE-2022-4139

Good to know:

Date: January 26, 2023

Language: C

Severity Score

Related Resources (8)

Severity Score

Weakness Type (CWE)

Top Fix

Upgrade Version

CVSS v3.1

Do you need more information?