PT-2021-7677 · Linux+2 · Linux Kernel+2

Palash Oswal

Published

2021-09-03

Updated

2023-08-14

CVE-2022-1508

CVSS v3.1

6.1

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The issue is related to an out-of-bounds read flaw in the Linux kernel's io uring module. This flaw can be triggered by a user calling the io read() function with specific parameters, allowing a local user to read memory out of bounds. This could potentially lead to the disclosure of protected information or cause a denial of service.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Out of bounds Read

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-125

Related Identifiers

ALT-PU-2021-3330

ALT-PU-2021-3358

ALT-PU-2021-3563

ALT-PU-2021-3573

ALT-PU-2021-3660

ALT-PU-2022-1240

ALT-PU-2022-1419

ALT-PU-2022-1421

ALT-PU-2023-1814

ALT-PU-2023-4894

BDU:2023-01197

CVE-2022-1508

OESA-2022-1802

OPENSUSE-SU-2022_2520-1

OPENSUSE-SU-2022_2615-1

SUSE-SU-2022:2520-1

SUSE-SU-2022:2615-1

Affected Products

Alt Linux

Linux Kernel

Suse

PT-2021-7677 · Linux+2 · Linux Kernel+2

CVE-2022-1508

Weakness Enumeration

Related Identifiers

Affected Products

References · 329