PT-2022-5565 · Linux+7 · Linux Kernel+7

一只狗

·

Published

2022-05-09

·

Updated

2024-06-15

·

CVE-2022-1462

CVSS v3.1

6.3

Medium

VectorAV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description The issue is related to an out-of-bounds read flaw in the Linux kernel's TeleTYpe subsystem. It occurs due to a race condition triggered by a user using ioctls TIOCSPTLCK, TIOCGPTPEER, TIOCSTI, and TCXONC, resulting in memory leakage in the flush to ldisc function. This allows a local user to crash the system or read unauthorized random data from memory. The flaw can be exploited to gain access to confidential data and cause a denial of service.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Race Condition

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-362

Related Identifiers

ALSA-2023:2148
ALSA-2023:2458
ALSA-2023:2736
ALSA-2023:2951
ALT-PU-2022-2957
BDU:2022-06925
CESA-2023_2736
CESA-2023_2951
CVE-2022-1462
DLA-3131-1
OESA-2022-1880
OESA-2022-1881
OESA-2022-1893
OPENSUSE-SU-2022_2520-1
OPENSUSE-SU-2022_2722-1
OPENSUSE-SU-2022_2741-1
OPENSUSE-SU-2022_2827-1
OPENSUSE-SU-2022_2875-1
OPENSUSE-SU-2024:12193-1
OPENSUSE-SU-2024:13704-1
RHSA-2023:2148
RHSA-2023:2458
RHSA-2023:2736
RHSA-2023:2951
RHSA-2023_2148
RHSA-2023_2458
RHSA-2023_2736
RHSA-2023_2951
RHSA-2024:0724
SUSE-SU-2022:2520-1
SUSE-SU-2022:2719-1
SUSE-SU-2022:2720-1
SUSE-SU-2022:2721-1
SUSE-SU-2022:2722-1
SUSE-SU-2022:2723-1
SUSE-SU-2022:2741-1
SUSE-SU-2022:2808-1
SUSE-SU-2022:2809-1
SUSE-SU-2022:2827-1
SUSE-SU-2022:2840-1
SUSE-SU-2022:2875-1
SUSE-SU-2022:2875-2
SUSE-SU-2022:2892-1
SUSE-SU-2022:2892-2
SUSE-SU-2022:2910-1
SUSE-SU-2023:0416-1
USN-6001-1
USN-6013-1
USN-6014-1

Affected Products

Alt Linux
Almalinux
Astra Linux
Centos
Linux Kernel
Red Hat
Suse
Ubuntu