CVE-2022-3524

Summary

A vulnerability was found in Linux Kernel. It has been declared as problematic. Affected by this vulnerability is the function ipv6_renew_options of the component IPv6 Handler. The manipulation leads to memory leak. The attack can be launched remotely. It is recommended to apply a patch to fix this issue. The identifier VDB-211021 was assigned to this vulnerability.

Affected Software

VendorProductVersion RangeStatus
LinuxKerneln/aaffected

Weaknesses

  • CWE-404: CWE-404 Denial of Service -> CWE-401 Memory Leak

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References