PT-2022-5924 · Linux+7 · Linux Kernel+7

Published

2022-10-19

Updated

2025-04-24

CVE-2022-3606

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux Kernel (affected versions not specified)

Description A vulnerability was found in the Linux Kernel, affecting the function find prog by sec insn of the file tools/lib/bpf/libbpf.c of the component BPF. The manipulation leads to null pointer dereference, which can cause a denial of service.

Recommendations To fix this issue, it is recommended to apply a patch. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Improper Resource Release

NULL Pointer Dereference

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-404CWE-476

Related Identifiers

ALT-PU-2023-1247

ALT-PU-2023-1318

ALT-PU-2024-14046

ALT-PU-2024-6818

AZL-27429

BDU:2022-07344

CVE-2022-3606

DLA-4137-1

OESA-2022-2071

OPENSUSE-SU-2023_0405-1

OPENSUSE-SU-2023_0409-1

OPENSUSE-SU-2024:12491-1

SUSE-SU-2023:0405-1

SUSE-SU-2023:0409-1

SUSE-SU-2023:0779-1

USN-5759-1

USN-5759-2

USN-6215-1

Affected Products

Alt Linux

Astra Linux

Debian

Linux Kernel

Linuxmint

Red Os

Suse

Ubuntu

PT-2022-5924 · Linux+7 · Linux Kernel+7

CVE-2022-3606

Weakness Enumeration

Related Identifiers

Affected Products

References · 101