UBUNTU-CVE-2022-20566

Advisory lineage Upstream: 1 Downstream: 3
Upstream
CVE-2022-20566
Published: 16 Dec 2022, 16:15
Last modified:03 Jun 2026, 13:35

Vulnerability Summary

Overall Risk (default)
medium
31/100
CVSS Score
7.8 HIGH
3.1 (osv_ubuntu)
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected

Timeline

16 Dec 2022, 16:15
Published
Vulnerability first disclosed
03 Jun 2026, 13:35
Last Modified
Vulnerability information updated

Description

In l2cap_chan_put of l2cap_core, there is a possible use after free due to improper locking. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-165329981References: Upstream kernel

CVSS Metrics

  • v3.1HIGHScore: 7.8CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected Systems

  • ubuntulinux

    all | < 4.4.0-237.271 | < 4.15.0-197.208 | < 5.4.0-128.144 | < 5.15.0-50.56

  • ubuntulinux-aws

    < 4.4.0-1116.122 | < 4.4.0-1154.169 | < 4.15.0-1143.155 | < 5.4.0-1086.93 | < 5.15.0-1021.25

  • ubuntulinux-aws-5.0

    all

  • ubuntulinux-aws-5.11

    all

  • ubuntulinux-aws-5.13

    all

  • ubuntulinux-aws-5.15

    < 5.15.0-1021.25~20.04.1

  • ubuntulinux-aws-5.3

    all

  • ubuntulinux-aws-5.4

    < 5.4.0-1086.93~18.04.1

  • ubuntulinux-aws-5.8

    all

  • ubuntulinux-aws-fips

    < 4.15.0-2082.88 | all | < 5.4.0-1086.93+fips1

  • ubuntulinux-aws-hwe

    < 4.15.0-1143.155~16.04.1

  • ubuntulinux-azure

    < 4.15.0-1157.172~14.04.2 | < 4.15.0-1159.174~16.04.1 | all | < 5.4.0-1094.100 | < 5.15.0-1021.26

  • ubuntulinux-azure-4.15

    < 4.15.0-1157.172

  • ubuntulinux-azure-5.11

    all

  • ubuntulinux-azure-5.13

    all

  • ubuntulinux-azure-5.15

    < 5.15.0-1021.26~20.04.1

  • ubuntulinux-azure-5.3

    all

  • ubuntulinux-azure-5.4

    < 5.4.0-1094.100~18.04.1

  • ubuntulinux-azure-5.8

    all

  • ubuntulinux-azure-edge

    all

  • ubuntulinux-azure-fde

    < 5.15.0-1024.30.1

  • ubuntulinux-azure-fips

    < 4.15.0-2066.72 | all | < 5.4.0-1094.100+fips1

  • ubuntulinux-bluefield

    < 5.4.0-1047.52 | all

  • ubuntulinux-dell300x

    < 4.15.0-1055.60

  • ubuntulinux-fips

    < 4.4.0-1086.93 | all | < 4.15.0-1100.111 | < 5.4.0-1062.70

  • ubuntulinux-gcp

    < 4.15.0-1138.154~16.04.1 | all | < 5.4.0-1090.98 | < 5.15.0-1019.25

  • ubuntulinux-gcp-4.15

    < 4.15.0-1138.154

  • ubuntulinux-gcp-5.11

    all

  • ubuntulinux-gcp-5.13

    all

  • ubuntulinux-gcp-5.15

    < 5.15.0-1021.28~20.04.1

  • ubuntulinux-gcp-5.3

    all

  • ubuntulinux-gcp-5.4

    < 5.4.0-1092.101~18.04.1

  • ubuntulinux-gcp-5.8

    all

  • ubuntulinux-gcp-fips

    < 4.15.0-2047.52 | all | < 5.4.0-1092.101+fips1

  • ubuntulinux-gke

    < 5.4.0-1084.90 | < 5.15.0-1017.20

  • ubuntulinux-gke-4.15

    all

  • ubuntulinux-gke-5.15

    < 5.15.0-1019.23~20.04.1

  • ubuntulinux-gke-5.4

    all

  • ubuntulinux-gkeop

    < 5.4.0-1054.57 | < 5.15.0-1004.6

  • ubuntulinux-gkeop-5.15

    < 5.15.0-1005.7~20.04.1

  • ubuntulinux-gkeop-5.4

    all

  • ubuntulinux-hwe

    < 4.15.0-197.208~16.04.1 | all

  • ubuntulinux-hwe-5.11

    all

  • ubuntulinux-hwe-5.13

    all

  • ubuntulinux-hwe-5.15

    < 5.15.0-50.56~20.04.1

  • ubuntulinux-hwe-5.4

    < 5.4.0-128.144~18.04.1

  • ubuntulinux-hwe-5.8

    all

  • ubuntulinux-hwe-edge

    all | all

  • ubuntulinux-ibm

    < 5.4.0-1034.38 | < 5.15.0-1015.17

  • ubuntulinux-ibm-5.4

    < 5.4.0-1034.38~18.04.1

Showing first 50 affected entries in server-rendered view.

References (6)