Описание
The vmwgfx driver contains a local privilege escalation vulnerability that allows unprivileged users to gain access to files opened by other processes on the system through a dangling 'file' pointer.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| linux | fixed | 5.15.15-2 | package | |
| linux | not-affected | stretch | package |
Примечания
https://www.openwall.com/lists/oss-security/2022/01/27/4
https://www.openwall.com/lists/oss-security/2022/02/03/1
Fixed by: https://git.kernel.org/linus/a0f90c8815706981c483a652a6aefca51a5e191c
https://github.com/opensrcsec/same_type_object_reuse_exploits/blob/main/cve-2022-22942-dc.c
https://github.com/opensrcsec/same_type_object_reuse_exploits/blob/main/cve-2022-22942.c
EPSS
Связанные уязвимости
The vmwgfx driver contains a local privilege escalation vulnerability that allows unprivileged users to gain access to files opened by other processes on the system through a dangling 'file' pointer.
The vmwgfx driver contains a local privilege escalation vulnerability that allows unprivileged users to gain access to files opened by other processes on the system through a dangling 'file' pointer.
The vmwgfx driver contains a local privilege escalation vulnerability that allows unprivileged users to gain access to files opened by other processes on the system through a dangling 'file' pointer.
The vmwgfx driver contains a local privilege escalation vulnerability that allows unprivileged users to gain access to files opened by other processes on the system through a dangling 'file' pointer.
Уязвимость функции vmw_execbuf_copy_fence_user() (drivers/gpu/drm/vmwgfx/vmwgfx_execbuf.c) модуля vmwgfx ядра операционных систем Linux, позволяющая нарушителю повысить свои привилегии
EPSS