UBUNTU-CVE-2022-3202

Advisory lineage Upstream: 1 Downstream: 1
Upstream
CVE-2022-3202
Downstream
USN-5650-1
Published: 14 Sept 2022, 15:15
Last modified:03 Jun 2026, 13:35

Vulnerability Summary

Overall Risk (default)
medium
28/100
CVSS Score
7.1 HIGH
3.1 (osv_ubuntu)
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected

Timeline

14 Sept 2022, 15:15
Published
Vulnerability first disclosed
03 Jun 2026, 13:35
Last Modified
Vulnerability information updated

Description

A NULL pointer dereference flaw in diFree in fs/jfs/inode.c in Journaled File System (JFS)in the Linux kernel. This could allow a local attacker to crash the system or leak kernel internal information.

CVSS Metrics

  • v3.1HIGHScore: 7.1CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

Affected Systems

  • ubuntulinux

    all | < 4.4.0-234.268 | < 4.15.0-189.200 | < 5.4.0-117.132 | < 5.15.0-37.39

  • ubuntulinux-aws

    < 4.4.0-1113.119 | < 4.4.0-1151.166 | < 4.15.0-1137.148 | < 5.4.0-1078.84 | < 5.15.0-1011.14

  • ubuntulinux-aws-5.0

    all

  • ubuntulinux-aws-5.11

    all

  • ubuntulinux-aws-5.13

    all

  • ubuntulinux-aws-5.3

    all

  • ubuntulinux-aws-5.4

    < 5.4.0-1078.84~18.04.1

  • ubuntulinux-aws-5.8

    all

  • ubuntulinux-aws-fips

    < 4.15.0-2076.81 | all | < 5.4.0-1078.84+fips1

  • ubuntulinux-aws-hwe

    < 4.15.0-1137.148~16.04.1

  • ubuntulinux-azure

    < 4.15.0-1146.161~14.04.1 | < 4.15.0-1146.161~16.04.1 | all | < 5.4.0-1083.87 | < 5.15.0-1010.12

  • ubuntulinux-azure-4.15

    < 4.15.0-1146.161

  • ubuntulinux-azure-5.11

    all

  • ubuntulinux-azure-5.13

    all

  • ubuntulinux-azure-5.15

    < 5.15.0-1008.9~20.04.1

  • ubuntulinux-azure-5.3

    all

  • ubuntulinux-azure-5.4

    < 5.4.0-1083.87~18.04.1

  • ubuntulinux-azure-5.8

    all

  • ubuntulinux-azure-edge

    all

  • ubuntulinux-azure-fde-5.15

    all

  • ubuntulinux-azure-fips

    < 4.15.0-2057.63 | all | < 5.4.0-1083.87+fips1

  • ubuntulinux-bluefield

    < 5.4.0-1040.44 | all

  • ubuntulinux-dell300x

    < 4.15.0-1049.54

  • ubuntulinux-fips

    < 4.4.0-1083.90 | all | < 4.15.0-1094.105 | < 5.4.0-1054.61

  • ubuntulinux-gcp

    < 4.15.0-1131.147~16.04.1 | all | < 5.4.0-1078.84 | < 5.15.0-1008.12

  • ubuntulinux-gcp-4.15

    < 4.15.0-1131.147

  • ubuntulinux-gcp-5.11

    all

  • ubuntulinux-gcp-5.13

    all

  • ubuntulinux-gcp-5.3

    all

  • ubuntulinux-gcp-5.4

    < 5.4.0-1078.84~18.04.1

  • ubuntulinux-gcp-5.8

    all

  • ubuntulinux-gcp-fips

    < 4.15.0-2041.46 | all | < 5.4.0-1078.84+fips1

  • ubuntulinux-gke

    < 5.4.0-1074.79 | < 5.15.0-1008.10

  • ubuntulinux-gke-4.15

    all

  • ubuntulinux-gke-5.4

    all

  • ubuntulinux-gkeop

    < 5.4.0-1046.48

  • ubuntulinux-gkeop-5.4

    all

  • ubuntulinux-hwe

    < 4.15.0-189.200~16.04.1 | all

  • ubuntulinux-hwe-5.11

    all

  • ubuntulinux-hwe-5.13

    all

  • ubuntulinux-hwe-5.15

    < 5.15.0-41.44~20.04.1

  • ubuntulinux-hwe-5.4

    < 5.4.0-117.132~18.04.1

  • ubuntulinux-hwe-5.8

    all

  • ubuntulinux-hwe-edge

    all | all

  • ubuntulinux-ibm

    < 5.4.0-1026.29 | < 5.15.0-1007.8

  • ubuntulinux-ibm-5.4

    < 5.4.0-1028.32~18.04.1

  • ubuntulinux-intel-5.13

    all

  • ubuntulinux-intel-iot-realtime

    all

  • ubuntulinux-intel-iotg

    < 5.15.0-1008.11

  • ubuntulinux-intel-iotg-5.15

    < 5.15.0-1008.11~20.04.1

Showing first 50 affected entries in server-rendered view.

References (5)