CVE-2022-0286

Опубликовано: 31 янв. 2022

Источник: nvd

CVSS3: 5.5

CVSS2: 2.1

EPSS Низкий

Описание

A flaw was found in the Linux kernel. A null pointer dereference in bond_ipsec_add_sa() may lead to local denial of service.

Ссылки

https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=105cd17a866017b45f3c45901b394c711c97bf40
Exploit
Mailing List
Patch
Vendor Advisory
https://syzkaller.appspot.com/bug?id=160f641886d88bf11cbf1236cc4db994bb210626
Exploit
Mailing List
Third Party Advisory
https://www.oracle.com/security-alerts/cpujul2022.html
Patch
Third Party Advisory
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=105cd17a866017b45f3c45901b394c711c97bf40
Exploit
Mailing List
Patch
Vendor Advisory
https://syzkaller.appspot.com/bug?id=160f641886d88bf11cbf1236cc4db994bb210626
Exploit
Mailing List
Third Party Advisory
https://www.oracle.com/security-alerts/cpujul2022.html
Patch
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*

Конфигурация 2

Одно из

cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:22.1.3:*:*:*:*:*:*:*

cpe:2.3:a:oracle:communications_cloud_native_core_network_exposure_function:22.1.1:*:*:*:*:*:*:*

cpe:2.3:a:oracle:communications_cloud_native_core_policy:22.2.0:*:*:*:*:*:*:*

EPSS

Процентиль: 3%

0.00018

Низкий

5.5 Medium

CVSS3

2.1 Low

CVSS2

Дефекты

CWE-476

Связанные уязвимости

CVE-2022-0286

CVSS3: 5.5

ubuntu

больше 3 лет назад

A flaw was found in the Linux kernel. A null pointer dereference in bond_ipsec_add_sa() may lead to local denial of service.

CVE-2022-0286

CVSS3: 5.1

redhat

почти 4 года назад

A flaw was found in the Linux kernel. A null pointer dereference in bond_ipsec_add_sa() may lead to local denial of service.

CVE-2022-0286

CVSS3: 5.5

debian

больше 3 лет назад

A flaw was found in the Linux kernel. A null pointer dereference in bo ...

GHSA-cvfm-v88g-pg7v

CVSS3: 5.5

github

больше 3 лет назад

A flaw was found in the Linux kernel. A null pointer dereference in bond_ipsec_add_sa() may lead to local denial of service.

BDU:2022-01562

CVSS3: 5.5

fstec

почти 4 года назад

Уязвимость функции bond_ipsec_add_sa() ядра операционной системы Linux, позволяющая нарушителю вызвать отказ в обслуживании

EPSS

Процентиль: 3%

0.00018

Низкий

5.5 Medium

CVSS3

2.1 Low

CVSS2

Дефекты

CWE-476