PT-2022-4321 · Linux+9 · Linux Kernel+9

Zhenpeng Lin

·

Published

2022-08-09

·

Updated

2025-12-03

·

CVE-2022-2588

CVSS v3.1

7.8

High

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description The issue is related to an error in resource management in the Linux kernel's route4 change function, which can be exploited to cause a denial of service or execute arbitrary code. The vulnerability is associated with a use-after-free problem in the cls route filter implementation. It allows a local privileged attacker to crash the system, potentially leading to a privilege escalation. The vulnerability can be exploited to elevate privileges by replacing non-privileged credentials with privileged ones.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Double Free

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-399CWE-415CWE-416

Related Identifiers

ALSA-2022:7110
ALSA-2022:7134
ALSA-2022_7110
ALSA-2022_7134
ALSA-2024_2394
ALSA-2025_16880
AZL-33261
BDU:2022-05178
CESA-2022_7110
CESA-2022_7134
CESA-2022_7137
CVE-2022-2588
DLA-3102-1
DLA-3131-1
DSA-5207-1
ELSA-2022-7110
ELSA-2022-7337
ELSA-2022-9689
ELSA-2022-9690
ELSA-2022-9691
ELSA-2022-9692
ELSA-2022-9693
ELSA-2022-9694
ELSA-2022-9699
ELSA-2022-9709
ELSA-2022-9710
ELSA-2022-9761
ELSA-2022-9787
ELSA-2022-9788
ELSA-2022-9827
ELSA-2022-9830
LSN-0089-1
MGASA-2022-0305
MGASA-2022-0308
OESA-2022-1845
OESA-2022-1864
OESA-2022-1871
OPENSUSE-SU-2022_3264-1
OPENSUSE-SU-2022_3288-1
OPENSUSE-SU-2022_3293-1
OPENSUSE-SU-2022_3408-1
OPENSUSE-SU-2022_3609-1
OPENSUSE-SU-2022_4617-1
OPENSUSE-SU-2024:12305-1
OPENSUSE-SU-2024:13704-1
RHSA-2022:6551
RHSA-2022:6872
RHSA-2022:6875
RHSA-2022:6978
RHSA-2022:6983
RHSA-2022:6991
RHSA-2022:7110
RHSA-2022:7134
RHSA-2022:7137
RHSA-2022:7146
RHSA-2022:7171
RHSA-2022:7173
RHSA-2022:7279
RHSA-2022:7280
RHSA-2022:7337
RHSA-2022:7338
RHSA-2022:7344
RHSA-2022:7885
RHSA-2022_7110
RHSA-2022_7134
RHSA-2022_7337
RHSA-2022_7338
RHSA-2023:4022
RHSA-2023:4023
RLSA-2022:7110
RLSA-2022:7134
RLSA-2022_7110
RLSA-2022_7134
SUSE-SU-2022:3263-1
SUSE-SU-2022:3264-1
SUSE-SU-2022:3265-1
SUSE-SU-2022:3274-1
SUSE-SU-2022:3282-1
SUSE-SU-2022:3288-1
SUSE-SU-2022:3291-1
SUSE-SU-2022:3293-1
SUSE-SU-2022:3294-1
SUSE-SU-2022:3408-1
SUSE-SU-2022:3422-1
SUSE-SU-2022:3450-1
SUSE-SU-2022:3609-1
SUSE-SU-2022:3809-1
SUSE-SU-2022:4024-1
SUSE-SU-2022:4027-1
SUSE-SU-2022:4030-1
SUSE-SU-2022:4033-1
SUSE-SU-2022:4034-1
SUSE-SU-2022:4035-1
SUSE-SU-2022:4039-1
SUSE-SU-2022:4100-1
SUSE-SU-2022:4112-1
SUSE-SU-2022:4113-1
SUSE-SU-2022:4129-1
SUSE-SU-2022:4617-1
SUSE-SU-2022_3263-1
SUSE-SU-2022_3294-1
SUSE-SU-2022_4024-1
SUSE-SU-2022_4027-1
SUSE-SU-2022_4030-1
SUSE-SU-2022_4033-1
SUSE-SU-2022_4034-1
SUSE-SU-2022_4035-1
SUSE-SU-2022_4039-1
SUSE-SU-2022_4100-1
SUSE-SU-2022_4112-1
SUSE-SU-2022_4113-1
SUSE-SU-2022_4129-1
USN-5557-1
USN-5560-1
USN-5560-2
USN-5562-1
USN-5564-1
USN-5565-1
USN-5566-1
USN-5567-1
USN-5582-1
USN-5588-1
ZDI-22-1117

Affected Products

Almalinux
Astra Linux
Centos
Linuxmint
Linux Kernel
Red Hat
Red Os
Rocky Linux
Suse
Ubuntu