CVE-2022-29581

Description

Improper Update of Reference Count vulnerability in net/sched of Linux Kernel allows local attacker to cause privilege escalation to root. This issue affects: Linux Kernel versions prior to 5.18; version 4.14 and later versions.

CVSS Metrics

• v3.1•HIGH•Score: 7.8CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
• v2.0•HIGH•Score: 7.2AV:L/AC:L/Au:N/C:C/I:C/A:C

EPSS Trends

Current EPSS score: 0.18%• Percentile: 40%

Techniques & Countermeasures

• CWE-911•Improper Update of Reference Count

  The product uses a reference count to manage a resource, but it does not update or incorrectly updates the reference count.

Affected Systems

• canonical•ubuntu_linux

  14.04 | 16.04 | 18.04 | 20.04 | 22.04

• debian•debian_linux

  10.0

• Unknown•Kernel

  ≥ unspecified, < 5.18 | ≥ 4.14, < unspecified

• linux•linux_kernel

  ≥ 4.14, < 4.14.278 | ≥ 4.15, < 4.19.241 | ≥ 4.20, < 5.4.191 | ≥ 5.5, < 5.10.113 | ≥ 5.11, < 5.15.36 | ≥ 5.16, < 5.17.5

• netapp•h300e

  na

• netapp•h300s_firmware

  na

• netapp•h410c_firmware

  na

• netapp•h410s_firmware

  na

• netapp•h500e

  na

• netapp•h500s_firmware

  na

• netapp•h700e

  na

• netapp•h700s_firmware

  na

References (7)

• https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=3db09e762dc79584a69c10d74a6b98f89a9979f8
• https://kernel.dance/#3db09e762dc79584a69c10d74a6b98f89a9979f8
• http://www.openwall.com/lists/oss-security/2022/05/18/2
• http://packetstormsecurity.com/files/167386/Kernel-Live-Patch-Security-Notice-LSN-0086-1.html
• https://security.netapp.com/advisory/ntap-20220629-0005/
• https://www.debian.org/security/2022/dsa-5173
• http://packetstormsecurity.com/files/168191/Kernel-Live-Patch-Security-Notice-LSN-0089-1.html