#VU63496 Improper update of reference count in Linux kernel - CVE-2022-29581


Vulnerability identifier: #VU63496

Vulnerability risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-29581

CWE-ID: CWE-911

Exploitation vector: Local

Exploit availability: No

Vulnerable software:
Linux kernel
Operating systems & Components / Operating system

Vendor: Linux Foundation

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to improper update of reference count in net/sched in Linux kernel. A local user can execute arbitrary code with root privileges.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

Linux kernel: before 5.18

External links
https://kernel.dance/#3db09e762dc79584a69c10d74a6b98f89a9979f8
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=3db09e762dc79584a69c10d74a6b98f89a9979f8
https://www.openwall.com/lists/oss-security/2022/05/18/2

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?


Latest bulletins with this vulnerability


Amazon Linux AMI update for kernel
Multiple vulnerabilities in Red Hat OpenShift Container Platform 4.13
Multiple vulnerabilities in OpenShift Container Platform 4.14
Red Hat Enterprise Linux 8.6 Extended Update Support update for kernel
Multiple vulnerabilities in IBM Spectrum Protect Plus
Multiple vulnerabilities in Dell Secure Connect Gateway
Multiple vulnerabilities in IBM Spectrum Copy Data Management
Multiple vulnerabilities in Dell VxRail Appliance components
Multiple vulnerabilities in Red Hat Advanced Cluster Management for Kubernetes 2.6
Multiple vulnerabilities in OpenShift Logging 5.5