5.5

CVE-2022-50001

netfilter: nft_tproxy: restrict to prerouting hook

In the Linux kernel, the following vulnerability has been resolved:

netfilter: nft_tproxy: restrict to prerouting hook

TPROXY is only allowed from prerouting, but nft_tproxy doesn't check this.
This fixes a crash (null dereference) when using tproxy from e.g. output.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version >= 4.19 < 4.19.273
LinuxLinux Kernel Version >= 4.20 < 5.4.232
LinuxLinux Kernel Version >= 5.5 < 5.10.169
LinuxLinux Kernel Version >= 5.11 < 5.15.95
LinuxLinux Kernel Version >= 5.16 < 5.19.6
LinuxLinux Kernel Version6.0 Updaterc1
LinuxLinux Kernel Version6.0 Updaterc2
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.16% 0.055
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Es wurden noch keine Informationen zu CWE veröffentlicht.
https://git.kernel.org/stable/c/0b21edf4cc13516716848e0a4fdf726aa2a62cd9
Patch
https://git.kernel.org/stable/c/83ef55c4281f1b4c6bd4457c2e96ccd1c9e80200
Patch
https://git.kernel.org/stable/c/eaba3f9b672c3a3f820da8ee9584b9520674eafa
Patch
https://git.kernel.org/stable/c/9a1d92cbeac3335fee99fa865b8c5b0f2e71a8f7
Patch
https://git.kernel.org/stable/c/343fed6b0daeb528ae5c9d4d84d9ff763ac95619
Patch
https://git.kernel.org/stable/c/18bbc3213383a82b05383827f4b1b882e3f0a5a5
Patch