PT-2022-5919 · Linux+8 · Linux Kernel+8

Gengjia Chen

+1

·

Published

2022-12-14

·

Updated

2025-04-08

·

CVE-2022-4379

CVSS v3.1

7.5

High

VectorAV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description The issue is related to a use-after-free vulnerability in the Linux kernel's NFS file system driver. This flaw allows a remote attacker to cause a denial of service. The vulnerability is specifically found in the nfs42 ssc open() function in fs/nfs/nfs4file.c.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-416

Related Identifiers

ALSA-2023:0951
ALSA-2023:0979
ALT-PU-2023-1023
ALT-PU-2023-1064
ALT-PU-2023-1415
ALT-PU-2023-1543
ALT-PU-2023-1586
ALT-PU-2023-1607
ALT-PU-2023-1628
ALT-PU-2023-1814
ALT-PU-2023-1835
ALT-PU-2023-4146
ALT-PU-2023-4894
ALT-PU-2024-4263
ALT-PU-2024-4843
AZL-12950
BDU:2022-07339
CVE-2022-4379
DLA-3404-1
MGASA-2023-0148
MGASA-2023-0149
OPENSUSE-SU-2023_0146-1
OPENSUSE-SU-2023_0147-1
OPENSUSE-SU-2023_0149-1
OPENSUSE-SU-2024:12579-1
OPENSUSE-SU-2024:13704-1
RHSA-2023:0951
RHSA-2023:0979
RHSA-2023:1008
RHSA-2023:1202
RHSA-2023:1203
RHSA-2023:1435
RHSA-2023_0951
RHSA-2023_0979
RLSA-2023:0979
RXSA-2023:0951
SUSE-SU-2023:0146-1
SUSE-SU-2023:0147-1
SUSE-SU-2023:0149-1
SUSE-SU-2023:0270-1
SUSE-SU-2023:0273-1
SUSE-SU-2023:0277-1
SUSE-SU-2023:0280-1
SUSE-SU-2023:0320-1
SUSE-SU-2023:0331-1
SUSE-SU-2023_0273-1
SUSE-SU-2023_0320-1
USN-5911-1
USN-5912-1
USN-5913-1
USN-5914-1
USN-5915-1
USN-5929-1
USN-5935-1
USN-5938-1
USN-5941-1
USN-5950-1
USN-5962-1

Affected Products

Alt Linux
Almalinux
Astra Linux
Linuxmint
Linux Kernel
Red Hat
Rocky Linux
Suse
Ubuntu