CVE-2022-34918

Advisory lineage Upstream: 0 Downstream: 36

Downstream

DEBIAN-CVE-2022-34918 DSA-5191-1 LSN-0089-1 MGASA-2022-0263 MGASA-2022-0264 OPENSUSE-SU-2022:2549-1

Modified

Published: 04 Jul 2022, 20:07

Last modified:03 Aug 2024, 09:22

Vulnerability Summary

Overall Risk (default)

medium

48/100

CVSS Score

7.8 HIGH

v3.1 (nvd)

EPSS Score

32.89% HIGH

33% probability -5.04%

KEV

Not listed

Ransomware

No reports

Public exploits

5 found

Dark Web

Not detected

Timeline

04 Jul 2022, 20:07

Published

Vulnerability first disclosed

03 Aug 2024, 09:22

Last Modified

Vulnerability information updated

Description

An issue was discovered in the Linux kernel through 5.18.9. A type confusion bug in nft_set_elem_init (leading to a buffer overflow) could be used by a local attacker to escalate privileges, a different vulnerability than CVE-2022-32250. (The attacker can obtain root access, but must start with an unprivileged user namespace to obtain CAP_NET_ADMIN access.) This can be fixed in nft_setelem_parse_data in net/netfilter/nf_tables_api.c.

CVSS Metrics

v3.1•HIGH•Score: 7.8CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
v2.0•HIGH•Score: 7.2AV:L/AC:L/Au:N/C:C/I:C/A:C

EPSS Trends

Current EPSS score: 32.89%• Percentile: 97%

Techniques & Countermeasures

CWE-843•Access of Resource Using Incompatible Type ('Type Confusion')
The product allocates or initializes a resource such as a pointer, object, or variable using one type, but it later accesses that resource using a type that is incompatible with the original type.

Affected Systems

canonical•ubuntu_linux
14.04 | 16.04 | 18.04 | 20.04 | 22.04
debian•debian_linux
11.0
linux•linux_kernel
≥ 4.1, < 4.14.316 | ≥ 4.15, < 4.19.284 | ≥ 4.20, < 5.4.244 | ≥ 5.5, < 5.10.130 | ≥ 5.11, < 5.15.54 | ≥ 5.16, < 5.18.11
netapp•h300s_firmware
na
netapp•h410c_firmware
na
netapp•h410s_firmware
na
netapp•h500s_firmware
na
netapp•h700s_firmware
na