CVE-2022-49183
5.5
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Summary
In the Linux kernel, the following vulnerability has been resolved:
net/sched: act_ct: fix ref leak when switching zones
When switching zones or network namespaces without doing a ct clear in between, it is now leaking a reference to the old ct entry. That's because tcf_ct_skb_nfct_cached() returns false and tcf_ct_flow_table_lookup() may simply overwrite it.
The fix is to, as the ct entry is not reusable, free it already at tcf_ct_skb_nfct_cached().
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 0fc1847359964e95e521cf2bb2b10f8e33dd0970 < 9222a08be539cbb7a8e0d46cbc7ab9e4db273eb8 | affected |
| Linux | Linux | a95ea90deb3071c1ded77a05e91cfebc5238d908 < bcbf4e5c3b5b373cd61528392dd1ec8e9c0fd33d | affected |
| Linux | Linux | e9408de00e5ecd0dbe91cf061c7da23711c4febb < 4bb42d73def9411e5cad885b9811987d72431df1 | affected |
| Linux | Linux | 2f131de361f6d0eaff17db26efdb844c178432f8 < b24793a37d91aacad7cb9893b226a7924a89636a | affected |
| Linux | Linux | 2f131de361f6d0eaff17db26efdb844c178432f8 < bcb74e132a76ce0502bb33d5b65533a4ed72d159 | affected |
| Linux | Linux | 5.10.103 < 5.10.258 | affected |
| Linux | Linux | 5.15.26 < 5.15.33 | affected |
| Linux | Linux | 5.16.12 < 5.16.19 | affected |
| Linux | Linux | 5.17 | affected |
| Linux | Linux | 0 < 5.17 | unaffected |
| Linux | Linux | 5.10.258 <= 5.10.* | unaffected |
| Linux | Linux | 5.15.33 <= 5.15.* | unaffected |
| Linux | Linux | 5.16.19 <= 5.16.* | unaffected |
| Linux | Linux | 5.17.2 <= 5.17.* | unaffected |
| Linux | Linux | 5.18 <= * | unaffected |
Weaknesses
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
References
- https://git.kernel.org/stable/c/9222a08be539cbb7a8e0d46cbc7ab9e4db273eb8
- https://git.kernel.org/stable/c/bcbf4e5c3b5b373cd61528392dd1ec8e9c0fd33d
- https://git.kernel.org/stable/c/4bb42d73def9411e5cad885b9811987d72431df1
- https://git.kernel.org/stable/c/b24793a37d91aacad7cb9893b226a7924a89636a
- https://git.kernel.org/stable/c/bcb74e132a76ce0502bb33d5b65533a4ed72d159
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.