CVE-2022-0435

Advisory lineage Upstream: 0 Downstream: 45

Downstream

DEBIAN-CVE-2022-0435 DLA-2940-1 DLA-2941-1 DSA-5092-1 DSA-5096-1 MGASA-2022-0062

Modified

Published: 25 Mar 2022, 00:00

Last modified:02 Aug 2024, 23:25

Vulnerability Summary

Overall Risk (default)

high

70/100

CVSS Score

9 HIGH

v2.0 (nvd)

EPSS Score

54.32% CRITICAL

54% probability 0.00%

KEV

Not listed

Ransomware

No reports

Public exploits

1 found

Dark Web

Not detected

Timeline

25 Mar 2022, 00:00

Published

Vulnerability first disclosed

02 Aug 2024, 23:25

Last Modified

Vulnerability information updated

Description

A stack overflow flaw was found in the Linux kernel's TIPC protocol functionality in the way a user sends a packet with malicious content where the number of domain member nodes is higher than the 64 allowed. This flaw allows a remote user to crash the system or possibly escalate their privileges if they have access to the TIPC network.

CVSS Metrics

v3.1•HIGH•Score: 8.8CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
v2.0•HIGH•Score: 9AV:N/AC:L/Au:S/C:C/I:C/A:C

EPSS Trends

Current EPSS score: 54.32%• Percentile: 98%

Techniques & Countermeasures

CWE-787•Out-of-bounds Write
The product writes data past the end, or before the beginning, of the intended buffer.

Affected Systems

fedoraproject•fedora
34 | 35
linux•linux_kernel
≥ 4.8, < 4.9.301 | ≥ 4.10, < 4.14.266 | ≥ 4.15, < 4.19.229 | ≥ 4.20, < 5.4.179 | ≥ 5.5, < 5.10.100 | ≥ 5.11, < 5.15.23 | ≥ 5.16, < 5.16.9 | 5.17 | 5.17:rc1 | 5.17:rc2 | 5.17:rc3
netapp•h300e_firmware
na
netapp•h300s_firmware
na
netapp•h410s_firmware
na
netapp•h500e_firmware
na
netapp•h500s_firmware
na
netapp•h700e_firmware
na
netapp•h700s_firmware
na
ovirt•node
4.4.10
redhat•codeready_linux_builder
8.0 | 8.4
redhat•codeready_linux_builder_eus
8.2
redhat•codeready_linux_builder_eus_for_power_little_endian
8.2
redhat•codeready_linux_builder_for_power_little_endian_eus
8.0 | 8.4
redhat•enterprise_linux
8.0
redhat•enterprise_linux_eus
8.2 | 8.4
redhat•enterprise_linux_for_ibm_z_systems
8.0
redhat•enterprise_linux_for_ibm_z_systems_eus
8.2 | 8.4
redhat•enterprise_linux_for_power_little_endian
8.0
redhat•enterprise_linux_for_power_little_endian_eus
8.2 | 8.4
redhat•enterprise_linux_for_real_time
8
redhat•enterprise_linux_for_real_time_for_nfv
8
redhat•enterprise_linux_for_real_time_for_nfv_tus
8.2 | 8.4
redhat•enterprise_linux_for_real_time_tus
8.2 | 8.4
redhat•enterprise_linux_server_aus
8.2 | 8.4
redhat•enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions
8.2 | 8.4
redhat•enterprise_linux_server_tus
8.2 | 8.4
redhat•enterprise_linux_server_update_services_for_sap_solutions
8.2 | 8.4
redhat•virtualization
4.0
redhat•virtualization_host
4.0