Mondoo Vulnerability Intelligence

Curated by Mondoo Research, enhanced with AI

Resources

Search Vulnerabilities
Trending CVEs
Browse Ecosystems
Terminology
Blog

Open Source

cnquery
cnspec

Star us on GitHub!

Company

Mondoo Platform
About
Contact

Vulnerability Intelligence

Customers

CVE-2022-48893 | Mondoo Vulnerability Intelligence

Vulnerability IntelligenceCVE-2022-48893

CVE-2022-48893

MEDIUM5.5

drm/i915/gt: Cleanup partial engine discovery failures

Published Aug 21, 2024

Modified 2 months ago

Details

In the Linux kernel, the following vulnerability has been resolved:

drm/i915/gt: Cleanup partial engine discovery failures

If we abort driver initialisation in the middle of gt/engine discovery, some engines will be fully setup and some not. Those incompletely setup engines only have 'engine->release == NULL' and so will leak any of the common objects allocated.

v2:

Drop the destroy_pinned_context() helper for now. It's not really worth it with just a single callsite at the moment. (Janusz)

References

WEB

https://git.kernel.org/stable/c/5c855bcc730656c4b7d30aaddcd0eafc7003e112

WEB

https://git.kernel.org/stable/c/78350c36fb15afef423404a83dcbc5c558dce795

WEB

https://git.kernel.org/stable/c/78a033433a5ae4fee85511ee075bc9a48312c79e

WEB

https://git.kernel.org/stable/c/7d21587d35bc816c85a51b8686f0f7e8e676fb14

WEB

https://lists.debian.org/debian-lts-announce/2025/05/msg00030.html

ADVISORY

https://www.cve.org/CVERecord?id=CVE-2022-48893

CVSS Analysis

CVSS v3.1

5.5

Exploitability

Attack Vector

LocalAV:L

Attack Complexity

LowAC:L

Privileges Required

LowPR:L

User Interaction

NoneUI:N

Scope

UnchangedS:U

Impact

Confidentiality

NoneC:N

Integrity

NoneI:N

Availability

HighA:H

5.5/CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Ecosystems

Timeline

PublishedAug 21, 2024

ModifiedDec 23, 2025