Description Memory leak in icmp6 implementation in Linux Kernel 5.13+ allows a remote attacker to DoS a host by making it go out-of-memory via icmp6 packets of type 130 or 131. We recommend upgrading past commit 2d3916f3189172d5c69d33065c3c21119fe539fc.
CVSS vector CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H Exploitability: 3.9 | Impact: 5.2 Attack Vector: Network
Complexity: Low
Privileges: None
User Interaction: None
Scope: Unchanged
Confidentiality: High
Integrity: None
Availability: High
Affected Packages3 packages ▶ Debian linux < 5.16.14-1 +2
🔴 Vulnerability Details3 GHSA GHSA-c2j9-m677-3m66: Memory leak in icmp6 implementation in Linux Kernel 5 ↗ 2022-03-19 ▶ CVEList Memory leak in ICMP6 in Linux Kernel ↗ 2022-03-18 ▶ OSV CVE-2022-0742: Memory leak in icmp6 implementation in Linux Kernel 5 ↗ 2022-03-18 ▶
📋 Vendor Advisories8 Red Hat vim: Heap-based Buffer Overflow prior to 9.0.0742 ↗ 2022-12-03 ▶ Ubuntu Linux kernel vulnerabilities ↗ 2022-04-06 ▶ Ubuntu Linux kernel (Intel IOTG) vulnerabilities ↗ 2022-04-01 ▶ Ubuntu Linux kernel (OEM) vulnerability ↗ 2022-03-24 ▶ Ubuntu Linux kernel vulnerabilities ↗ 2022-03-22 ▶ Show 3 more