CVE-2022-48642
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
netfilter: nf_tables: fix percpu memory leak at nf_tables_addchain()
It seems to me that percpu memory for chain stats started leaking since commit 3bc158f8d0330f0a ("netfilter: nf_tables: map basechain priority to hardware priority") when nft_chain_offload_priority() returned an error.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 3bc158f8d0330f0ac58597c023acca2234c14616 < b043a525a3f5520abb676a7cd8f6328fdf959e88 | affected |
| Linux | Linux | 3bc158f8d0330f0ac58597c023acca2234c14616 < 08d7524f366a886b99b1630a24a27dd6e0d7f852 | affected |
| Linux | Linux | 3bc158f8d0330f0ac58597c023acca2234c14616 < 985b031667c3177b9e7fb9787b989628e4271714 | affected |
| Linux | Linux | 3bc158f8d0330f0ac58597c023acca2234c14616 < 9a4d6dd554b86e65581ef6b6638a39ae079b17ac | affected |
| Linux | Linux | 5.3 | affected |
| Linux | Linux | 0 < 5.3 | unaffected |
| Linux | Linux | 5.10.146 <= 5.10.* | unaffected |
| Linux | Linux | 5.15.71 <= 5.15.* | unaffected |
| Linux | Linux | 5.19.12 <= 5.19.* | unaffected |
| Linux | Linux | 6.0 <= * | unaffected |
Weaknesses
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
CVE Program Container
Additional References
- https://git.kernel.org/stable/c/b043a525a3f5520abb676a7cd8f6328fdf959e88
- https://git.kernel.org/stable/c/08d7524f366a886b99b1630a24a27dd6e0d7f852
- https://git.kernel.org/stable/c/985b031667c3177b9e7fb9787b989628e4271714
- https://git.kernel.org/stable/c/9a4d6dd554b86e65581ef6b6638a39ae079b17ac
References
- https://git.kernel.org/stable/c/b043a525a3f5520abb676a7cd8f6328fdf959e88
- https://git.kernel.org/stable/c/08d7524f366a886b99b1630a24a27dd6e0d7f852
- https://git.kernel.org/stable/c/985b031667c3177b9e7fb9787b989628e4271714
- https://git.kernel.org/stable/c/9a4d6dd554b86e65581ef6b6638a39ae079b17ac
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.