PT-2022-1820 · Linux+4 · Linux Kernel+4

Eric Dumazet

Published

2022-03-03

Updated

2023-08-14

CVE-2022-0742

CVSS v3.1

9.1

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux Kernel versions 5.13 and later

Description The issue is related to a memory leak in the icmp6 implementation, allowing a remote attacker to cause a denial of service by making the host go out-of-memory via icmp6 packets of type 130 or 131. This can be achieved by sending specially crafted icmp6 packets, exploiting the error in handling ICMPv6 messages. The problem is associated with incomplete cleanup of temporary or auxiliary resources.

Recommendations To resolve the issue, upgrade past commit 2d3916f3189172d5c69d33065c3c21119fe539fc. As a temporary workaround, consider restricting the handling of icmp6 packets of type 130 or 131 to minimize the risk of exploitation.

Fix

DoS

Memory Leak

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-275CWE-459CWE-401

Related Identifiers

ALT-PU-2022-1451

ALT-PU-2022-1452

ALT-PU-2022-1511

ALT-PU-2022-1528

ALT-PU-2022-1540

ALT-PU-2022-1587

ALT-PU-2022-1633

ALT-PU-2022-1746

ALT-PU-2022-1833

ALT-PU-2023-4894

AZL-9094

BDU:2022-01250

BDU:2022-02383

CVE-2022-0742

MGASA-2022-0100

MGASA-2022-0101

USN-5337-1

USN-5346-1

USN-5362-1

USN-5368-1

Affected Products

Alt Linux

Linux Kernel

Linuxmint

Red Os

Ubuntu

PT-2022-1820 · Linux+4 · Linux Kernel+4

CVE-2022-0742

Weakness Enumeration

Related Identifiers

Affected Products

References · 88