PT-2022-1375 · Linux+9 · Linux Kernel+9

Enesdex

+1

·

Published

2022-05-27

·

Updated

2024-12-23

·

CVE-2022-2959

CVSS v3.1

7.0

High

VectorAV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Linux Kernel (affected versions not specified)
Description A race condition was found in the Linux kernel's watch queue due to a missing lock in pipe resize ring(). The specific flaw exists within the handling of pipe buffers. The issue results from the lack of proper locking when performing operations on an object. This flaw allows a local user to crash the system or escalate their privileges on the system.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Race Condition

Improper Locking

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-362CWE-667

Related Identifiers

ALSA-2023:0300
ALSA-2023:0334
ALT-PU-2022-2002
ALT-PU-2022-2003
ALT-PU-2022-2014
ALT-PU-2022-2037
ALT-PU-2022-2038
ALT-PU-2022-2050
ALT-PU-2022-2052
ALT-PU-2022-2054
ALT-PU-2022-2099
ALT-PU-2022-2136
ALT-PU-2022-2137
ALT-PU-2022-2152
ALT-PU-2022-2155
ALT-PU-2022-2158
ALT-PU-2022-3358
ALT-PU-2023-4894
ASB-A-244395411
AZL-10692
BDU:2022-07353
CVE-2022-2959
OESA-2022-1893
OPENSUSE-SU-2022_3288-1
OPENSUSE-SU-2022_3293-1
OPENSUSE-SU-2022_4617-1
RHSA-2022:8973
RHSA-2022:8974
RHSA-2022:9082
RHSA-2023:0300
RHSA-2023:0334
RHSA-2023:0348
RHSA-2023_0300
RHSA-2023_0334
RLSA-2023:0300
RLSA-2023:0334
RXSA-2023:0334
SUSE-SU-2022:3288-1
SUSE-SU-2022:3293-1
SUSE-SU-2022:4113-1
SUSE-SU-2022:4617-1
USN-5594-1
USN-5599-1
USN-5602-1
USN-5616-1
USN-5623-1
ZDI-22-1165

Affected Products

Alt Linux
Almalinux
Astra Linux
Linux Kernel
Linuxmint
Red Hat
Red Os
Rocky Linux
Suse
Ubuntu