Red Hat Enterprise Linux 8.1 Update Services for SAP Solutions update for kernel



Published: 2022-07-19 | Updated: 2022-08-25
Risk Medium
Patch available YES
Number of vulnerabilities 3
CVE-ID CVE-2022-1012
CVE-2022-1729
CVE-2022-32250
CWE-ID CWE-401
CWE-362
CWE-416
Exploitation vector Network
Public exploit Public exploit code for vulnerability #3 is available.
Vulnerable software
Subscribe 		kernel (Red Hat package)
Operating systems & Components / Operating system package or component

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions
Operating systems & Components / Operating system package or component

Vendor Red Hat Inc.

Security Bulletin

This security bulletin contains information about 3 vulnerabilities.

1) Memory leak

EUVDB-ID: #VU64079

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2022-1012

CWE-ID: CWE-401 - Improper Release of Memory Before Removing Last Reference ('Memory Leak')

Exploit availability: No

Description

The vulnerability allows a remote attacker to gain access to sensitive information.

The vulnerability exists due to insufficient randomization in the net/ipv4/tcp.c when calculating port offsets in Linux kernel cause by small table perturb size. A remote attacker can cause memory leak and gain access to sensitive information.

Mitigation

Install updates from vendor's website.

Vulnerable software versions

kernel (Red Hat package): 4.18.0-147.0.2.el8_1 - 4.18.0-147.67.1.el8_1

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions: 8.1

CPE2.3 External links

http://access.redhat.com/errata/RHSA-2022:5636

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

2) Race condition

EUVDB-ID: #VU64156

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2022-1729

CWE-ID: CWE-362 - Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a race condition within sys_perf_event_open() in Linux kernel. A local user can exploit the race and gain unauthorized access to sensitive information and escalate privileges on the system.

Mitigation

Install updates from vendor's website.

Vulnerable software versions

kernel (Red Hat package): 4.18.0-147.0.2.el8_1 - 4.18.0-147.67.1.el8_1

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions: 8.1

CPE2.3 External links

http://access.redhat.com/errata/RHSA-2022:5636

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

3) Use-after-free

EUVDB-ID: #VU64668

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2022-32250

CWE-ID: CWE-416 - Use After Free

Exploit availability: Yes

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free incorrect NFT_STATEFUL_EXPR in net/netfilter/nf_tables_api.c in Linux kernel. A local user with ability to create user/net namespaces can execute arbitrary code with root privileges.

Mitigation

Install updates from vendor's website.

Vulnerable software versions

kernel (Red Hat package): 4.18.0-147.0.2.el8_1 - 4.18.0-147.67.1.el8_1

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions: 8.1

CPE2.3 External links

http://access.redhat.com/errata/RHSA-2022:5636

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?



###SIDEBAR###