CVE-2022-4378

Summary

A stack overflow flaw was found in the Linux kernel's SYSCTL subsystem in how a user changes certain kernel parameters and variables. This flaw allows a local user to crash or potentially escalate their privileges on the system.

Affected Software

VendorProductVersion RangeStatus
n/akernelkernel 6.0.12affected

Weaknesses

  • CWE-131: CWE-131->CWE-120

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References