CVE-2022-23222

Published: Jan 14, 2022

Modified: Aug 3, 2024

PUBLISHED

Description

kernel/bpf/verifier.c in the Linux kernel through 5.15.14 allows local users to gain privileges because of the availability of pointer arithmetic via certain *_OR_NULL pointer types.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://www.openwall.com/lists/oss-security/2022/01/13/1

[oss-security] 20220114 Re: Linux Kernel eBPF Improper Input Validation Vulnerability

mailing-list

[oss-security] 20220118 Re: Linux Kernel eBPF Improper Input Validation Vulnerability

mailing-list

DSA-5050

vendor-advisory

https://security.netapp.com/advisory/ntap-20220217-0002/

FEDORA-2022-952bb7b856

vendor-advisory

FEDORA-2022-edbd74424e

vendor-advisory

[oss-security] 20220601 Re: Linux Kernel eBPF Improper Input Validation Vulnerability

mailing-list

[oss-security] 20220604 Re: Linux Kernel eBPF Improper Input Validation Vulnerability

mailing-list

[oss-security] 20220607 Re: Linux Kernel eBPF Improper Input Validation Vulnerability

mailing-list

https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=64620e0a1e712a778095bd35cbb277dc2259281f

https://bugzilla.suse.com/show_bug.cgi?id=1194765

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2022-23222

Description

Affected Products

References