PT-2022-5150 · Linux+6 · Linux Kernel+6

Billy Jheng Bing Jhong

+1

·

Published

2022-10-18

·

Updated

2026-06-01

·

CVE-2022-2602

CVSS v2.0

7.2

High

VectorAV:L/AC:L/Au:N/C:C/I:C/A:C
Name of the Vulnerable Software and Affected Versions Linux kernel versions 5.1 through 6.0.3
Description A use-after-free issue exists in the io uring asynchronous input/output interface of the Linux kernel, specifically related to Unix SCM garbage collection and the improper update of reference counts. This flaw allows an unprivileged user to escalate privileges to root level. Technical exploitation may involve using inode locking to pause a kernel thread and employing the DirtyCred file exploitation technique.
Recommendations Update Linux kernel to a version later than 6.0.3.

Exploit

Fix

DoS

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-416

Related Identifiers

ALSA-2024_2394
ALSA-2025_16880
ALT-PU-2022-2883
ALT-PU-2022-2884
ALT-PU-2022-2885
AZL-33262
BDU:2022-06407
CVE-2022-2602
DLA-3173-1
DSA-5257-1
DSA-5257-2
ELSA-2022-10079
ELSA-2022-10081
LSN-0090-1
MGASA-2022-0442
MGASA-2022-0443
OESA-2022-2033
OESA-2022-2069
OESA-2022-2070
OPENSUSE-SU-2022_4503-1
OPENSUSE-SU-2022_4504-1
OPENSUSE-SU-2022_4585-1
OPENSUSE-SU-2022_4613-1
OPENSUSE-SU-2022_4616-1
OPENSUSE-SU-2022_4617-1
ROSA-SA-2023-2189
SUSE-SU-2022:4503-1
SUSE-SU-2022:4504-1
SUSE-SU-2022:4585-1
SUSE-SU-2022:4589-1
SUSE-SU-2022:4613-1
SUSE-SU-2022:4614-1
SUSE-SU-2022:4616-1
SUSE-SU-2022:4617-1
SUSE-SU-2022_4503-1
SUSE-SU-2022_4504-1
SUSE-SU-2022_4585-1
SUSE-SU-2022_4589-1
SUSE-SU-2022_4613-1
SUSE-SU-2022_4616-1
SUSE-SU-2023:0229-1
SUSE-SU-2023:0237-1
SUSE-SU-2023:0245-1
SUSE-SU-2023:0262-1
SUSE-SU-2023:0267-1
SUSE-SU-2023:0270-1
SUSE-SU-2023:0277-1
SUSE-SU-2023:0280-1
SUSE-SU-2023:0281-1
SUSE-SU-2023:0331-1
SUSE-SU-2023:0339-1
SUSE-SU-2023_0229-1
SUSE-SU-2023_0237-1
SUSE-SU-2023_0245-1
SUSE-SU-2023_0262-1
SUSE-SU-2023_0267-1
SUSE-SU-2023_0270-1
SUSE-SU-2023_0277-1
SUSE-SU-2023_0280-1
SUSE-SU-2023_0281-1
SUSE-SU-2023_0331-1
SUSE-SU-2023_0339-1
SUSE-SU-2025:03613-1
SUSE-SU-2025:03615-1
SUSE-SU-2025:03626-1
SUSE-SU-2025:03628-1
SUSE-SU-2025:3716-1
SUSE-SU-2025:3761-1
SUSE-SU-2025_03615-1
SUSE-SU-2025_03626-1
SUSE-SU-2025_03628-1
USN-5691-1
USN-5692-1
USN-5693-1
USN-5700-1
USN-5752-1
ZDI-22-1462

Affected Products

Alt Linux
Astra Linux
Linuxmint
Linux Kernel
Red Os
Suse
Ubuntu