CVE-2022-3533

Опубликовано: 22 окт. 2022

Источник: redhat

CVSS3: 3.5

Описание

A vulnerability was found in Linux Kernel. It has been rated as problematic. This issue affects the function parse_usdt_arg of the file tools/lib/bpf/usdt.c of the component BPF. The manipulation of the argument reg_name leads to memory leak. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-211031.

A vulnerability was found in parse_usdt_arg in tools/lib/bpf/usdt.c in BPF in the Linux Kernel. This issue occurs with the manipulation of the argument reg_name, leading to a memory leak problem.

Отчет

There was no shipped kernel version seen affected with this problem.

Затронутые пакеты

Платформа	Пакет	Состояние
Red Hat Enterprise Linux 6	kernel	Not affected
Red Hat Enterprise Linux 7	kernel	Not affected
Red Hat Enterprise Linux 7	kernel-rt	Not affected
Red Hat Enterprise Linux 8	kernel	Not affected
Red Hat Enterprise Linux 8	kernel-rt	Not affected
Red Hat Enterprise Linux 9	kernel	Not affected
Red Hat Enterprise Linux 9	kernel-rt	Not affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low

Дефект:

CWE-401

https://bugzilla.redhat.com/show_bug.cgi?id=2165625Kernel: memory lean in parse_usdt_arg in tools/lib/bpf/usdt.c in BPF

3.5 Low

CVSS3

Связанные уязвимости

CVE-2022-3533

CVSS3: 3.5

ubuntu

больше 3 лет назад

CVE-2022-3533

CVSS3: 3.5

nvd

больше 3 лет назад

CVE-2022-3533

CVSS3: 5.7

msrc

больше 2 лет назад

Linux Kernel BPF usdt.c parse_usdt_arg memory leak

CVE-2022-3533

CVSS3: 3.5

debian

больше 3 лет назад

A vulnerability was found in Linux Kernel. It has been rated as proble ...

GHSA-8x83-fq4g-v5m7

CVSS3: 5.7

github

больше 3 лет назад

3.5 Low

CVSS3