CVE-2022-1055: A use-after-free exists in the Linux Kernel in tc_new_tfilter that could allow a local attacker to gain privilege escalation. The exploit requires unprivileged…

high8.6CVSS 4.0

AVLACHATNPRLUINVCHVIHVANSCHSIHSANEXCRXIRXARXMAVXMACXMATXMPRXMUIXMVCXMVIXMVAXMSCXMSIXMSAXSXAUXRXVXREXUX

A use-after-free exists in the Linux Kernel in tc_new_tfilter that could allow a local attacker to gain privilege escalation. The exploit requires unprivileged user namespaces. We recommend upgrading past commit 04c2a47ffb13c29778e2a14e414ad4cb5a5db4b5

Affected

27 ranges· showing 25

Vendor	Product	Version range	Fixed in
canonical	ubuntu_linux	—	—
canonical	ubuntu_linux	—	—
canonical	ubuntu_linux	—	—
canonical	ubuntu_linux	—	—
canonical	ubuntu_linux	—	—
debian	linux	< linux 5.16.7-1 (bookworm)	linux 5.16.7-1 (bookworm)
fedoraproject	fedora	—	—
linux	kernel	< v5.17-rc3	v5.17-rc3
linux	linux_kernel	—	—
linux	linux_kernel	>= 0 < 5.10.103-1	5.10.103-1
linux	linux_kernel	>= 0 < 5.16.7-1	5.16.7-1
linux	linux_kernel	>= 0 < 5.16.7-1	5.16.7-1
linux	linux_kernel	>= 0 < 5.16.7-1	5.16.7-1
linux	linux_kernel	>= 0 < 5.4.0-107.121	5.4.0-107.121
linux	linux_kernel	>= 0 < 4.4.0-227.261	4.4.0-227.261
linux	linux_kernel	>= 0 < 4.15.0-180.189	4.15.0-180.189
linux	linux_kernel	>= 0 < 5.4.0-117.132	5.4.0-117.132
linux	linux_kernel	>= 0 < 5.15.0-37.39	5.15.0-37.39
linux	linux_kernel	>= 5.1 < 5.17	5.17
msrc	cbl2_kernel_5.15.32.1-3_on_cbl_mariner_2.0	—	—
msrc	cbl_mariner_1.0_arm	—	—
msrc	cbl_mariner_1.0_x64	—	—
msrc	cbl_mariner_2.0_arm	—	—
msrc	cbl_mariner_2.0_x64	—	—
msrc	cm1_kernel_5.10.111.1-1_on_cbl_mariner_1.0	—	—

CVSS provenance

nvdv4.08.6HIGHCVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:H/SI:H/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

osv8.6HIGH