CVE-2022-0382

Published: Feb 11, 2022

Modified: Aug 2, 2024

PUBLISHED

Description

An information leak flaw was found due to uninitialized memory in the Linux kernel's TIPC protocol subsystem, in the way a user sends a TIPC datagram to one or more destinations. This flaw allows a local user to read some kernel memory. This issue is limited to no more than 7 bytes, and the user cannot control what is read. This flaw affects the Linux kernel versions prior to 5.17-rc1.

Vendor	Product	Versions
n/a	kernel	affected `Linux kernel versions prior to 5.17-rc1`

Weaknesses (CWE)

CWE-909

References

https://github.com/torvalds/linux/commit/d6d86830705f173fca6087a3e67ceaf68db80523

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2022-0382

Description

Affected Products

Weaknesses (CWE)

References