PT-2022-15230 · Nio Uring · Nio Uring
Published
2022-07-22
·
Updated
2022-11-09
·
CVE-2022-2209
None
No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.
Name of the Vulnerable Software and Affected Versions
nio uring versions prior to commit df3f3bb5059d20ef094d6b2f0256c4bf4127a859
Description
The issue arises from an incomplete mapping of flags in nio uring, leading to incorrect reference counts and resulting in use-after-free errors. This occurs when nio uring attempts to ensure consistency with the calling process during the execution of IORING OP by using work flags to determine which identity to grab from the calling process.
Recommendations
For versions prior to commit df3f3bb5059d20ef094d6b2f0256c4bf4127a859, upgrade past this commit to resolve the issue.
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Nio Uring