CVE-2022-2318
N/A
N/A
Summary
There are use-after-free vulnerabilities caused by timer handler in net/rose/rose_timer.c of linux that allow attackers to crash linux kernel without any privileges.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | Kernel | Linux Kernel version prior to kernel 5.19 rc5 | affected |
Weaknesses
- CWE-416: CWE-416
ADP Enrichment
CVE Program Container
Additional References
- https://github.com/torvalds/linux/commit/9cc02ede696272c5271a401e4f27c262359bc2f6
- https://www.debian.org/security/2022/dsa-5191
- https://lists.debian.org/debian-lts-announce/2022/10/msg00000.html
- https://security.netapp.com/advisory/ntap-20230120-0001/
References
- https://github.com/torvalds/linux/commit/9cc02ede696272c5271a401e4f27c262359bc2f6
- https://www.debian.org/security/2022/dsa-5191
- https://lists.debian.org/debian-lts-announce/2022/10/msg00000.html
- https://security.netapp.com/advisory/ntap-20230120-0001/
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.