CVE-2022-2991 — Heap-based Buffer Overflow in Kernel

CWE-122 — Heap-based Buffer Overflow CWE-787 — Out-of-bounds Write11 documents7 sources

Severity

6.7MEDIUMNVD

OSV5.9

EPSS

0.0%

top 89.38%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Linux Kernel Debian Linux Msrc CM1 Kernel 5.10.145.1-1 ON CBL Mariner 1.0

Timeline

PublishedAug 25

Latest updateApr 12

Description

A heap-based buffer overflow was found in the Linux kernel's LightNVM subsystem. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length heap-based buffer. This vulnerability allows a local attacker to escalate privileges and execute arbitrary code in the context of the kernel. The attacker must first obtain the ability to execute high-privileged code on the target system to exploit this vulnerability.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:HExploitability: 0.8 | Impact: 5.9

Affected Packages6 packages

▶NVDlinux/linux_kernel< 5.15

▶Debianlinux/linux_kernel< 5.10.120-1+3

▶Ubuntulinux/linux_kernel< 4.4.0-239.273

▶CVEListV5linux/linux_kernelFixed in kernel 5.15-rc1

▶msrcmsrc/cm1_kernel_5.10.145.1-1_on_cbl_mariner_1.0

Patches

Patch: git.kernel.org ↗Patch: git.kernel.org ↗

🔴Vulnerability Details

OSV

linux, linux-kvm, linux-lts-xenial vulnerabilities↗2023-04-12

▶

OSV

linux-aws vulnerabilities↗2023-04-06

▶

GHSA

GHSA-9fpj-jhm5-p6h9: A heap-based buffer overflow was found in the Linux kernel's LightNVM subsystem↗2022-08-26

▶

OSV

CVE-2022-2991: A heap-based buffer overflow was found in the Linux kernel's LightNVM subsystem↗2022-08-25

▶

📋Vendor Advisories

Ubuntu

Linux kernel (AWS) vulnerabilities↗2023-04-12

▶

Ubuntu

Linux kernel vulnerabilities↗2023-04-12

▶

Ubuntu

Linux kernel (AWS) vulnerabilities↗2023-04-06

▶

Microsoft

▶

Red Hat

kernel: heap-based overflow in LightNVM Subsystem may lead to privilege escalation↗2022-07-11

▶