CVE-2022-1116
published 2022-05-17CVE-2022-1116: Integer Overflow or Wraparound vulnerability in io_uring of Linux Kernel allows local attacker to cause memory corruption and escalate privileges to root. This…
high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
Integer Overflow or Wraparound vulnerability in io_uring of Linux Kernel allows local attacker to cause memory corruption and escalate privileges to root. This issue affects: Linux Kernel versions prior to 5.4.189; version 5.4.24 and later versions.
Affected
9 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | linux | — | — |
| linux | kernel | >= 5.4.24 < unspecified | unspecified |
| linux | kernel | >= unspecified < 5.4.189 | 5.4.189 |
| linux | linux_kernel | >= 0 < 5.4.0-113.127 | 5.4.0-113.127 |
| linux | linux_kernel | >= 0 < 4.4.0-227.261 | 4.4.0-227.261 |
| linux | linux_kernel | >= 0 < 4.15.0-180.189 | 4.15.0-180.189 |
| linux | linux_kernel | >= 0 < 5.4.0-117.132 | 5.4.0-117.132 |
| linux | linux_kernel | >= 0 < 5.15.0-37.39 | 5.15.0-37.39 |
| linux | linux_kernel | >= 5.4.24 < 5.4.189 | 5.4.189 |
CVSS provenance
nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
osv7.8HIGH