PT-2018-3842 · Linux+2 · Linux Kernel+2

Syzbot

Publicado

2018-12-19

Atualizado

2023-02-15

CVE-2022-21385

CVSS v3.1

6.2

Média

Vetor

AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified) Oracle Linux kernels (affected versions not specified)

Description The issue is related to incorrect clearance or release of resources in the Linux operating system kernel. It may allow a remote attacker to cause a denial of service. Additionally, a flaw in the net rds alloc sgs() function in Oracle Linux kernels can be exploited by unprivileged local users to crash the machine, impacting availability.

Recommendations For Linux kernel: At the moment, there is no information about a newer version that contains a fix for this vulnerability. For Oracle Linux kernels: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Improper Resource Release

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-404

Identificadores relacionados

BDU:2022-06146

CVE-2022-21385

OPENSUSE-SU-2022_3408-1

SUSE-SU-2022:3263-1

SUSE-SU-2022:3265-1

SUSE-SU-2022:3274-1

SUSE-SU-2022:3282-1

SUSE-SU-2022:3291-1

SUSE-SU-2022:3294-1

SUSE-SU-2022:3408-1

SUSE-SU-2022:3422-1

SUSE-SU-2023:0416-1

Produtos afetados

Linux Kernel

Oracle Linux Kernels

Suse

PT-2018-3842 · Linux+2 · Linux Kernel+2

CVE-2022-21385

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 212