CVE-2022-3544

Опубликовано: 17 окт. 2022

Источник: nvd

CVSS3: 3.5

CVSS3: 5.5

EPSS Низкий

Описание

A vulnerability, which was classified as problematic, was found in Linux Kernel. Affected is the function damon_sysfs_add_target of the file mm/damon/sysfs.c of the component Netfilter. The manipulation leads to memory leak. It is recommended to apply a patch to fix this issue. The identifier of this vulnerability is VDB-211044.

Ссылки

https://git.kernel.org/pub/scm/linux/kernel/git/netfilter/nf-next.git/commit/?id=1c8e2349f2d033f634d046063b704b2ca6c46972
Patch
Vendor Advisory
https://vuldb.com/?id.211044
Third Party Advisory
https://git.kernel.org/pub/scm/linux/kernel/git/netfilter/nf-next.git/commit/?id=1c8e2349f2d033f634d046063b704b2ca6c46972
Patch
Vendor Advisory
https://vuldb.com/?id.211044
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

Версия до 6.0 (исключая)

cpe:2.3:o:linux:linux_kernel:6.0:rc1:*:*:*:*:*:*

cpe:2.3:o:linux:linux_kernel:6.0:rc2:*:*:*:*:*:*

cpe:2.3:o:linux:linux_kernel:6.0:rc3:*:*:*:*:*:*

cpe:2.3:o:linux:linux_kernel:6.0:rc4:*:*:*:*:*:*

cpe:2.3:o:linux:linux_kernel:6.0:rc5:*:*:*:*:*:*

cpe:2.3:o:linux:linux_kernel:6.0:rc6:*:*:*:*:*:*

cpe:2.3:o:linux:linux_kernel:6.0:rc7:*:*:*:*:*:*

EPSS

Процентиль: 2%

0.00014

Низкий

3.5 Low

CVSS3

5.5 Medium

CVSS3

Дефекты

CWE-404

Связанные уязвимости

CVE-2022-3544

CVSS3: 3.5

ubuntu

больше 3 лет назад

CVE-2022-3544

CVSS3: 5.5

redhat

больше 3 лет назад

CVE-2022-3544

CVSS3: 5.5

msrc

больше 3 лет назад

Linux Kernel Netfilter sysfs.c damon_sysfs_add_target memory leak

CVE-2022-3544

CVSS3: 3.5

debian

больше 3 лет назад

A vulnerability, which was classified as problematic, was found in Lin ...

GHSA-jvv2-4wf8-v3j5

CVSS3: 5.5

github

больше 3 лет назад

EPSS

Процентиль: 2%

0.00014

Низкий

3.5 Low

CVSS3

5.5 Medium

CVSS3

Дефекты

CWE-404