PT-2022-2548 · Linux+4 · Linux Kernel+4

Miaoqian Lin

Published

2022-02-18

Updated

2023-08-14

CVE-2022-29156

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.16.12

Description The issue is related to a double free in the rtrs clt dev release function in the Linux kernel, specifically in the drivers/infiniband/ulp/rtrs/rtrs-clt.c file. This could potentially allow an attacker to cause a denial of service.

Recommendations For Linux kernel versions prior to 5.16.12, update to version 5.16.12 or later to resolve the issue. As a temporary workaround, consider restricting access to the rtrs clt dev release function until a patch is available.

Fix

Double Free

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-415

Related Identifiers

ALT-PU-2022-1424

ALT-PU-2022-1425

ALT-PU-2022-1456

ALT-PU-2022-1461

ALT-PU-2022-1462

ALT-PU-2022-1467

ALT-PU-2022-1511

ALT-PU-2022-1540

ALT-PU-2022-1611

ALT-PU-2022-1630

ALT-PU-2022-1633

ALT-PU-2022-1688

ALT-PU-2022-1746

ALT-PU-2022-1833

ALT-PU-2023-4894

AZL-9355

BDU:2022-02968

CVE-2022-29156

OESA-2022-1631

OPENSUSE-SU-2022_1676-1

OPENSUSE-SU-2022_1687-1

SUSE-SU-2022:1669-1

SUSE-SU-2022:1676-1

SUSE-SU-2022:1687-1

SUSE-SU-2022_1669-1

SUSE-SU-2022_1676-1

SUSE-SU-2022_1687-1

USN-5417-1

Affected Products

Alt Linux

Linuxmint

Linux Kernel

Suse

Ubuntu

PT-2022-2548 · Linux+4 · Linux Kernel+4

CVE-2022-29156

Weakness Enumeration

Related Identifiers

Affected Products

References · 114