CVE-2022-3640

Updated: 2024-11-21 21:12:04.155196

Description:

A vulnerability, which was classified as critical, was found in Linux Kernel. Affected is the function l2cap_conn_del of the file net/bluetooth/l2cap_core.c of the component Bluetooth. The manipulation leads to use after free. It is recommended to apply a patch to fix this issue. The identifier of this vulnerability is VDB-211944.


Links NIST CIRCL RHEL Ubuntu

Severity

Severity Score
CVSS Version 2.x 0
CVSS Version 3.x HIGH 8.8

Status

OS name Project name Version Score Severity Status Errata Last updated

Statement

AlmaLinux 9.2 ESU kernel 5.14.0 8.8 HIGH Needs Triage 2025-01-23 11:47:28
AlmaLinux 9.2 FIPS kernel 5.14.0 8.8 HIGH Needs Triage 2025-01-23 11:47:27
CentOS 6 ELS kernel 2.6.32 8.8 HIGH Needs Triage 2025-01-23 11:47:25
CentOS 7 ELS kernel 3.10.0 8.8 HIGH Released CLSA-2025:1738672047 2025-02-19 06:50:32
CentOS 8.4 ELS kernel 4.18.0 8.8 HIGH Released CLSA-2023:1683229770 2023-05-04 17:08:37
CentOS 8.5 ELS kernel 4.18.0 8.8 HIGH Released CLSA-2023:1683146027 2023-05-04 17:08:35
CentOS Stream 8 ELS kernel 4.18.0 8.8 HIGH Already Fixed 2025-02-19 06:50:32
CloudLinux 6 ELS kernel 2.6.32 8.8 HIGH Needs Triage 2025-01-23 11:47:26
CloudLinux 7 ELS kernel 3.10.0 8.8 HIGH Needs Triage 2025-01-23 11:47:34
Oracle Linux 6 ELS kernel 2.6.32 8.8 HIGH Needs Triage 2025-01-23 11:47:31
Total: 14