CVE-2022-1016

Summary

A flaw was found in the Linux kernel in net/netfilter/nf_tables_core.c:nft_do_chain, which can cause a use-after-free. This issue needs to handle 'return' with proper preconditions, as it can lead to a kernel information leak problem caused by a local, unprivileged attacker.

Affected Software

VendorProductVersion RangeStatus
n/aKernelAffects v3.13-rc1 and later, Fixed in v5.18-rc1affected

Weaknesses

  • CWE-824: CWE-824 - Access of Uninitialized Pointer.

ADP Enrichment

CVE Program Container

Additional References

References