CVE-2022-24122

Published: Jan 29, 2022

Modified: Aug 3, 2024

PUBLISHED

Description

kernel/ucount.c in the Linux kernel 5.14 through 5.16.4, when unprivileged user namespaces are enabled, allows a use-after-free and privilege escalation because a ucounts object can outlive its namespace.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://github.com/torvalds/linux/commit/f9d87929d451d3e649699d0f1d74f71f77ad38f5

x_refsource_MISC

https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=f9d87929d451d3e649699d0f1d74f71f77ad38f5

x_refsource_MISC

https://www.openwall.com/lists/oss-security/2022/01/29/1

x_refsource_MISC

FEDORA-2022-57fd391bf8

vendor-advisory

x_refsource_FEDORA

FEDORA-2022-667a5c6e26

vendor-advisory

x_refsource_FEDORA

https://security.netapp.com/advisory/ntap-20220221-0001/

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2022-24122

Description

Affected Products

References