QwikSec

Security Database

CVE

CWE

Training

CVE-2022-0435

Published: Mar 25, 2022

Modified: Aug 2, 2024

PUBLISHED

Description

A stack overflow flaw was found in the Linux kernel's TIPC protocol functionality in the way a user sends a packet with malicious content where the number of domain member nodes is higher than the 64 allowed. This flaw allows a remote user to crash the system or possibly escalate their privileges if they have access to the TIPC network.

Vendor	Product	Versions
n/a	kernel	affected `kernel 5.17-rc4`

Weaknesses (CWE)

References

https://bugzilla.redhat.com/show_bug.cgi?id=2048738

https://www.openwall.com/lists/oss-security/2022/02/10/1

https://security.netapp.com/advisory/ntap-20220602-0001/

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.