CVE-2022-0500 — Improper Restriction of Operations within the Bounds of a Memory Buffer in Kernel
Severity
7.8HIGHNVD
EPSS
0.0%
top 90.55%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedMar 25
Latest updateAug 10
Description
A flaw was found in unrestricted eBPF usage by the BPF_BTF_LOAD, leading to a possible out-of-bounds memory write in the Linux kernel’s BPF subsystem due to the way a user loads BTF. This flaw allows a local user to crash or escalate their privileges on the system.
CVSS vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9
Affected Packages11 packages
Also affects: Fedora 34, 35
Patches
🔴Vulnerability Details
4OSV▶
linux, linux-aws, linux-azure, linux-gcp, linux-gke, linux-ibm, linux-kvm, linux-lowlatency, linux-oracle, linux-raspi vulnerabilities↗2022-07-14
GHSA▶
GHSA-2vh7-8384-w472: A flaw was found in unrestricted eBPF usage by the BPF_BTF_LOAD, leading to a possible out-of-bounds memory write in the Linux kernel’s BPF subsystem↗2022-03-26
OSV▶
CVE-2022-0500: A flaw was found in unrestricted eBPF usage by the BPF_BTF_LOAD, leading to a possible out-of-bounds memory write in the Linux kernel’s BPF subsystem↗2022-03-25
📋Vendor Advisories
5Microsoft▶
A flaw was found in unrestricted eBPF usage by the BPF_BTF_LOAD leading to a possible out-of-bounds memory write in the Linux kernel’s BPF subsystem due to the way a user loads BTF. This flaw allows a↗2022-03-08
Red Hat▶
kernel: Linux ebpf logic vulnerability leads to critical memory read and write gaining root privileges↗2022-01-14
Debian▶
CVE-2022-0500: linux - A flaw was found in unrestricted eBPF usage by the BPF_BTF_LOAD, leading to a po...↗2022