CVE-2022-2526
published 2022-09-09CVE-2022-2526: A use-after-free vulnerability was found in systemd. This issue occurs due to the on_stream_io() function and dns_stream_complete() function in…
critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
A use-after-free vulnerability was found in systemd. This issue occurs due to the on_stream_io() function and dns_stream_complete() function in 'resolved-dns-stream.c' not incrementing the reference counting for the DnsStream object. Therefore, other functions and callbacks called can dereference the DNSStream object, causing the use-after-free when the reference is still used later.
Affected
9 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | systemd | < systemd 240-1 (bookworm) | systemd 240-1 (bookworm) |
| paloalto | pan-os | — | — |
| systemd_project | systemd | — | — |
| systemd_project | systemd | >= 0 < 240-1 | 240-1 |
| systemd_project | systemd | >= 0 < 240-1 | 240-1 |
| systemd_project | systemd | >= 0 < 240-1 | 240-1 |
| systemd_project | systemd | >= 0 < 240-1 | 240-1 |
| systemd_project | systemd | >= 0 < 237-3ubuntu10.54 | 237-3ubuntu10.54 |
| systemd_project | systemd | >= 0 < 237-3ubuntu10.56 | 237-3ubuntu10.56 |
CVSS provenance
nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
osv9.8CRITICAL