CVE-2022-1016 log

Source	CVE Red Hat MITRE NVD Debian Ubuntu SUSE Alpine Mageia CVE Details CIRCL Bugs Arch Linux Red Hat Gentoo SUSE GitHub Lists oss-security full-disclosure bugtraq Misc GitHub code web search
Severity	Unknown
Remote	Unknown
Type	Unknown
Description	CVE-2022-1016 pertains to uninitialized stack data in the nft_do_chain routine. CVE-2022-1016 is exploitable starting from commit 96518518cc41 (original merge of nf_tables), v3.13-rc1, and has been fixed in commit 4c905f6740a3 ("netfilter: nf_tables: initialize registers in nft_do_chain()").

Group	Package	Affected	Fixed	Severity	Status
AVG-2701	linux-lts	5.15.14-1		High	Vulnerable
AVG-2700	linux-hardened	5.16.20.hardened1-1	5.17.5.hardened1-1	High	Fixed
AVG-2699	linux-zen	5.17.2.zen3-1	5.17.3.zen1-1	High	Fixed
AVG-2698	linux	5.17.2.arch3-1	5.17.3.arch1-1	High	Fixed

References
https://www.openwall.com/lists/oss-security/2022/03/28/5 https://git.kernel.org/linus/4c905f6740a365464e91467aa50916555b28213d

Notes
TODO