Описание
[REJECTED CVE] A use-after-free vulnerability has been identified in the Linux Kernel's netfilter subsystem that did not properly handle the removal of stateful expressions in some situations. A local attacker could use this to cause a denial of service (system crash) or execute arbitrary code.
Отчет
This CVE has been rejected. This candidate is a duplicate of CVE-2022-32250. Note: All CVE users should reference CVE-2022-32250 instead of this candidate.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 6 | kernel | Under investigation | ||
| Red Hat Enterprise Linux 8 | kernel | Under investigation | ||
| Red Hat Enterprise Linux 8 | kernel-rt | Under investigation | ||
| Red Hat Enterprise Linux 7 | kernel-rt | Fixed | RHSA-2022:5236 | 28.06.2022 |
| Red Hat Enterprise Linux 7 | kpatch-patch | Fixed | RHSA-2022:5216 | 28.06.2022 |
| Red Hat Enterprise Linux 7 | kernel | Fixed | RHSA-2022:5232 | 28.06.2022 |
| Red Hat Enterprise Linux 8.2 Extended Update Support | kernel-rt | Fixed | RHSA-2022:5224 | 28.06.2022 |
| Red Hat Enterprise Linux 8.2 Extended Update Support | kernel | Fixed | RHSA-2022:5220 | 28.06.2022 |
| Red Hat Enterprise Linux 8.2 Extended Update Support | kpatch-patch | Fixed | RHSA-2022:5476 | 01.07.2022 |
| Red Hat Enterprise Linux 9 | kernel | Fixed | RHSA-2022:5249 | 01.07.2022 |
Показывать по
Дополнительная информация
Связанные уязвимости
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2022-32250. Reason: This candidate is a duplicate of CVE-2022-32250. Notes: All CVE users should reference CVE-2022-32250 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage.
A use-after-free vulnerability was found in the Linux kernel's Netfilter subsystem in net/netfilter/nf_tables_api.c. This flaw allows a local attacker with user access to cause a privilege escalation issue.
Уязвимость компонента net/netfilter/nf_tables_api.c подсистемы netfilter ядра операционной системы Linux, позволяющая нарушителю повысить свои привилегии до уровня root
Security update for the Linux Kernel (Live Patch 19 for SLE 15 SP3)
ELSA-2022-5232: kernel security and bug fix update (IMPORTANT)