CVE-2022-2663

Updated: 2024-11-24 05:54:55.505944

Description:

An issue was found in the Linux kernel in nf_conntrack_irc where the message handling can be confused and incorrectly matches the message. A firewall may be able to be bypassed when users are using unencrypted IRC with nf_conntrack_irc configured.


Links NIST CIRCL RHEL Ubuntu

Severity

Severity Score
CVSS Version 2.x 0
CVSS Version 3.x MEDIUM 5.3

Status

OS name Project name Version Score Severity Status Errata Last updated

Statement

AlmaLinux 9.2 ESU kernel 5.14.0 5.3 MEDIUM Ignored 2023-11-08 04:07:32
AlmaLinux 9.2 FIPS kernel 5.14.0 5.3 MEDIUM Ignored 2023-11-21 04:12:11
CentOS 6 ELS kernel 2.6.32 5.3 MEDIUM Ignored 2023-10-27 11:07:00
CentOS 7 ELS kernel 3.10.0 5.3 MEDIUM Ignored 2023-10-27 11:07:00
CentOS 8.4 ELS kernel 4.18.0 5.3 MEDIUM Released CLSA-2023:1690287378 2023-07-25 09:14:29
CentOS 8.5 ELS kernel 4.18.0 5.3 MEDIUM Released CLSA-2023:1690294029 2023-07-25 11:10:14
CentOS Stream 8 ELS kernel 4.18.0 5.3 MEDIUM Ignored 2024-10-08 10:44:50
CloudLinux 6 ELS kernel 2.6.32 5.3 MEDIUM Ignored 2023-10-27 11:07:00
CloudLinux 7 ELS kernel 3.10.0 5.3 MEDIUM Ignored 2024-10-08 10:44:50
Oracle Linux 6 ELS kernel 2.6.32 5.3 MEDIUM Ignored 2023-10-27 11:07:00
Total: 13