CVE-2022-3028

 

Published at: - 31-08-2022 06:15

Last modified: - 21-11-2022 08:45

Total changes: - 8

Description

A race condition was found in the Linux kernel's IP framework for transforming packets (XFRM subsystem) when multiple calls to xfrm_probe_algs occurred simultaneously. This flaw could allow a local attacker to potentially trigger an out-of-bounds write or leak kernel heap memory by performing an out-of-bounds read and copying it into a socket.

Common Vulnerability Scoring System (CVSS)

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

 

Verification logic

 

Reference

• https://github.com/torvalds/linux/commit/ba953a9d89a00c078b85f4b190bc1dde66fe16b5
• https://lore.kernel.org/all/YtoWqEkKzvimzWS5@gondor.apana.org.au/T/
• FEDORA-2022-6835ddb6d8-Mailing List, Third Party Advisory
• FEDORA-2022-35c14ba5bb-Mailing List, Third Party Advisory
• FEDORA-2022-ccb0138bb6-Mailing List, Third Party Advisory
• [debian-lts-announce] 20221002 [SECURITY] [DLA 3131-1] linux security update-Mailing List, Third Party Advisory
• [debian-lts-announce] 20221101 [SECURITY] [DLA 3173-1] linux-5.10 security update-Mailing List, Third Party Advisory

 

Keywords

NVD

 

CVE-2022-3028

 

CVE

 

Common vulnerabilities & exposures

 

CVSS

 

Common vulnerability scoring system

 

Security

 

Vulnerabilities

 

Exposures