CVE-2022-2318

Опубликовано: 06 июл. 2022

Источник: debian

Описание

There are use-after-free vulnerabilities caused by timer handler in net/rose/rose_timer.c of linux that allow attackers to crash linux kernel without any privileges.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
linux	fixed	5.18.14-1		package

Примечания

https://www.openwall.com/lists/oss-security/2022/07/03/2
https://git.kernel.org/linus/9cc02ede696272c5271a401e4f27c262359bc2f6 (5.19-rc5)

Связанные уязвимости

CVE-2022-2318

CVSS3: 5.5

ubuntu

больше 3 лет назад

There are use-after-free vulnerabilities caused by timer handler in net/rose/rose_timer.c of linux that allow attackers to crash linux kernel without any privileges.

CVE-2022-2318

CVSS3: 5.5

redhat

больше 3 лет назад

There are use-after-free vulnerabilities caused by timer handler in net/rose/rose_timer.c of linux that allow attackers to crash linux kernel without any privileges.

CVE-2022-2318

CVSS3: 5.5

nvd

больше 3 лет назад

There are use-after-free vulnerabilities caused by timer handler in net/rose/rose_timer.c of linux that allow attackers to crash linux kernel without any privileges.

CVE-2022-2318

CVSS3: 5.5

msrc

больше 3 лет назад

There are use-after-free vulnerabilities caused by timer handler in net/rose/rose_timer.c of linux that allow attackers to crash linux kernel without any privileges.

GHSA-qxhq-w389-3vq5

CVSS3: 5.5

github

больше 3 лет назад

There are use-after-free vulnerabilities caused by timer handler in net/rose/rose_timer.c of linux that allow attackers to crash linux kernel without any privileges.