CVE-2022-48720

In the Linux kernel, the following vulnerability has been resolved: net: macsec: Fix offload support for NETDEV_UNREGISTER event Current macsec netdev notify handler handles NETDEV_UNREGISTER event by releasing relevant SW resources only, this causes resources leak in case of macsec HW offload, as the underlay driver was not notified to clean it's macsec offload resources. Fix by calling the underlay driver to clean it's relevant resources by moving offload handling from macsec_dellink() to macsec_common_dellink() when handling NETDEV_UNREGISTER event.

CVSS v3 5.5 MEDIUM

5.5^/10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 3.6

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

References

Link	Resource
https://git.kernel.org/stable/c/2e7f5b6ee1a7a2c628253a95b0a95b582901ef1b	Patch
https://git.kernel.org/stable/c/8299be160aad8548071d080518712dec0df92bd5	Patch
https://git.kernel.org/stable/c/9cef24c8b76c1f6effe499d2f131807c90f7ce9a	Patch
https://git.kernel.org/stable/c/e7a0b3a0806dae3cc81931f0e83055ca2ac6f455	Patch
https://git.kernel.org/stable/c/2e7f5b6ee1a7a2c628253a95b0a95b582901ef1b	Patch
https://git.kernel.org/stable/c/8299be160aad8548071d080518712dec0df92bd5	Patch
https://git.kernel.org/stable/c/9cef24c8b76c1f6effe499d2f131807c90f7ce9a	Patch
https://git.kernel.org/stable/c/e7a0b3a0806dae3cc81931f0e83055ca2ac6f455	Patch

Configurations

Configuration 1 (hide)

OR	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel:5.17:rc1::::::
	cpe:2.3:o:linux:linux_kernel:5.17:rc2::::::

History

01 Oct 2025, 13:38

Type	Values Removed	Values Added
References	~~() https://git.kernel.org/stable/c/2e7f5b6ee1a7a2c628253a95b0a95b582901ef1b -~~	() https://git.kernel.org/stable/c/2e7f5b6ee1a7a2c628253a95b0a95b582901ef1b - Patch
References	~~() https://git.kernel.org/stable/c/8299be160aad8548071d080518712dec0df92bd5 -~~	() https://git.kernel.org/stable/c/8299be160aad8548071d080518712dec0df92bd5 - Patch
References	~~() https://git.kernel.org/stable/c/9cef24c8b76c1f6effe499d2f131807c90f7ce9a -~~	() https://git.kernel.org/stable/c/9cef24c8b76c1f6effe499d2f131807c90f7ce9a - Patch
References	~~() https://git.kernel.org/stable/c/e7a0b3a0806dae3cc81931f0e83055ca2ac6f455 -~~	() https://git.kernel.org/stable/c/e7a0b3a0806dae3cc81931f0e83055ca2ac6f455 - Patch
First Time		Linux Linux linux Kernel
CPE		cpe:2.3:o:linux:linux_kernel:5.17:rc2:::::: cpe:2.3:o:linux:linux_kernel:5.17:rc1:::::: cpe:2.3:o:linux:linux_kernel::::::::
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 5.5
CWE		NVD-CWE-Other

Information

Published : 2024-06-20 11:15

Updated : 2025-10-01 13:38

NVD link : CVE-2022-48720

Mitre link : CVE-2022-48720

CVE.ORG link : CVE-2022-48720

JSON object : View

Products Affected

linux

linux_kernel

CWE

NVD-CWE-Other

5.5 /10