PT-2022-4442 · Linux+8 · Linux Kernel+8

Published

2022-07-19

Updated

2025-06-18

CVE-2022-21505

CVSS v2.0

7.2

High

Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The issue is related to the Linux kernel's IMA appraisal feature, which can be used to bypass lockdown mechanisms when Secure Boot is disabled or unavailable. This can be achieved by using the ima appraise=log boot parameter with kexec on any machine. The IMA appraisal feature is designed to verify the integrity of operating system components using digital signatures and hashes. However, when Secure Boot is enabled, IMA prevents the setting of ima appraise=log from the boot parameter, but this does not cover cases where lockdown is used without Secure Boot.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Origin Validation Error

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-254CWE-346CWE-233

Related Identifiers

ALSA-2023:2148

ALSA-2023:2458

ALT-PU-2022-3411

BDU:2022-05306

CVE-2022-21505

MGASA-2022-0278

MGASA-2022-0279

OESA-2022-1794

OPENSUSE-SU-2022_2722-1

OPENSUSE-SU-2022_2741-1

OPENSUSE-SU-2022_2803-1

OPENSUSE-SU-2022_2875-1

RHSA-2023:2148

RHSA-2023:2458

RHSA-2023_2148

RHSA-2023_2458

SUSE-SU-2022:2722-1

SUSE-SU-2022:2741-1

SUSE-SU-2022:2803-1

SUSE-SU-2022:2809-1

SUSE-SU-2022:2875-1

SUSE-SU-2022:2875-2

SUSE-SU-2022:2892-1

SUSE-SU-2022:2892-2

USN-6031-1

Affected Products

Alt Linux

Almalinux

Astra Linux

Linuxmint

Linux Kernel

Red Hat

Red Os

Suse

Ubuntu

PT-2022-4442 · Linux+8 · Linux Kernel+8

CVE-2022-21505

Weakness Enumeration

Related Identifiers

Affected Products

References · 282