7

CVE-2022-29582

Exploit
In the Linux kernel before 5.17.3, fs/io_uring.c has a use-after-free due to a race condition in io_uring timeouts. This can be triggered by a local user who has no access to any user namespace; however, the race condition perhaps can only be exploited infrequently.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version < 5.17.3
DebianDebian Linux Version11.0
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.77% 0.509
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7 1 5.9
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov 6.9 3.4 10
AV:L/AC:M/Au:N/C:C/I:C/A:C
CWE-362 Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

The product contains a concurrent code sequence that requires temporary, exclusive access to a shared resource, but a timing window exists in which the shared resource can be modified by another code sequence operating concurrently.

https://www.debian.org/security/2022/dsa-5127
Third Party Advisory
http://www.openwall.com/lists/oss-security/2022/04/22/4
Third Party Advisory
Mailing List
http://www.openwall.com/lists/oss-security/2022/08/08/3
Third Party Advisory
Mailing List
http://www.openwall.com/lists/oss-security/2024/04/24/3
https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.17.3
Vendor Advisory
Mailing List
https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=e677edbcabee849bfdd43f1602bccbecf736a646
Patch
Vendor Advisory
Mailing List
https://github.com/Ruia-ruia/CVE-2022-29582-Exploit
Third Party Advisory
https://github.com/torvalds/linux/commit/e677edbcabee849bfdd43f1602bccbecf736a646
Patch
Third Party Advisory
https://ruia-ruia.github.io/2022/08/05/CVE-2022-29582-io-uring/
Third Party Advisory
Exploit
https://www.openwall.com/lists/oss-security/2022/04/22/3
Third Party Advisory
Mailing List