CVE-2022-2961 — Use After Free in Kernel

CWE-416 — Use After Free CWE-362 — Race Condition CWE-787 — Out-of-bounds Write7 documents6 sources

Severity

7.0HIGHNVD

EPSS

0.0%

top 92.60%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Linux Kernel Fedoraproject Fedora Debian Linux +2 more

Timeline

PublishedAug 29

Description

A use-after-free flaw was found in the Linux kernel’s PLP Rose functionality in the way a user triggers a race condition by calling bind while simultaneously triggering the rose_bind() function. This flaw allows a local user to crash or potentially escalate their privileges on the system.

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.0 | Impact: 5.9

Affected Packages5 packages

▶NVDlinux/linux_kernel< 6.0+1

▶debiandebian/linux

▶CVEListV5linux/linux_kernelLinux kernel 6.0-rc2

▶msrcmsrc/cm1_kernel_5.10.189.1-1_on_cbl_mariner_1.0

▶msrcmsrc/cbl2_kernel_5.15.167.1-2_on_cbl_mariner_2.0

Also affects: Fedora 36

🔴Vulnerability Details

GHSA

GHSA-gm8v-w32h-qchr: A use-after-free flaw was found in the Linux kernel’s PLP Rose functionality in the way a user triggers a race condition by calling bind while simulta↗2022-08-29

▶

OSV

CVE-2022-2961: A use-after-free flaw was found in the Linux kernel’s PLP Rose functionality in the way a user triggers a race condition by calling bind while simulta↗2022-08-29

▶

📋Vendor Advisories

Red Hat

kernel: race condition in rose_bind()↗2022-08-23

▶

Microsoft

▶

Debian

CVE-2022-2961: linux - A use-after-free flaw was found in the Linux kernel’s PLP Rose functionality in ...↗2022

▶