CVE-2022-1016

Updated: 2024-11-24 04:37:42.180086

Description:

A flaw was found in the Linux kernel in net/netfilter/nf_tables_core.c:nft_do_chain, which can cause a use-after-free. This issue needs to handle 'return' with proper preconditions, as it can lead to a kernel information leak problem caused by a local, unprivileged attacker.


Links NIST CIRCL RHEL Ubuntu

Severity

Severity Score
CVSS Version 2.x 0
CVSS Version 3.x MEDIUM 5.5

Status

OS name Project name Version Score Severity Status Errata Last updated

Statement

AlmaLinux 9.2 ESU kernel 5.14.0 5.5 MEDIUM Ignored 2023-11-08 04:07:32
AlmaLinux 9.2 FIPS kernel 5.14.0 5.5 MEDIUM Ignored 2023-11-21 04:12:09
CentOS 6 ELS kernel 2.6.32 5.5 MEDIUM Ignored 2022-09-09 05:02:10
CentOS 7 ELS kernel 3.10.0 5.5 MEDIUM Released CLSA-2024:1720468480 2024-07-23 17:32:42
CentOS 8.4 ELS kernel 4.18.0 5.5 MEDIUM Ignored 2024-06-24 11:42:26
CentOS 8.5 ELS kernel 4.18.0 5.5 MEDIUM Ignored 2024-06-24 11:42:26
CentOS Stream 8 ELS kernel 4.18.0 5.5 MEDIUM Ignored 2024-10-08 06:17:23
CloudLinux 6 ELS kernel 2.6.32 5.5 MEDIUM Ignored 2022-09-09 05:02:10
CloudLinux 7 ELS kernel 3.10.0 5.5 MEDIUM Ignored 2024-10-08 06:17:22
Oracle Linux 6 ELS kernel 2.6.32 5.5 MEDIUM Ignored 2022-12-02 20:00:52
Total: 13