CVE-2022-1966 log

Source	CVE Red Hat MITRE NVD Debian Ubuntu SUSE Alpine Mageia CVE Details CIRCL Bugs Arch Linux Red Hat Gentoo SUSE GitHub Lists oss-security full-disclosure bugtraq Misc GitHub code web search
Severity	High
Remote	No
Type	Privilege escalation
Description	a user with the ability to create user/net namespaces can exploit a use-after-free write in netflter to achieve privilege escalation to root.

Group	Package	Affected	Fixed	Severity	Status
AVG-2754	linux-lts	5.15.44-1	5.15.45-1	High	Fixed
AVG-2753	linux-zen	5.18.1.zen1-1	5.18.2.zen1-1	High	Fixed
AVG-2752	linux-hardened	5.17.12.hardened2-2	5.17.13.hardened1-1	High	Fixed
AVG-2751	linux	5.18.1-1	5.18.2-1	High	Fixed

References
https://seclists.org/oss-sec/2022/q2/159 https://git.kernel.org/pub/scm/linux/kernel/git/netdev/net.git/commit/net/netfilter?id=520778042ccca019f3ffa136dd0ca565c486cedd https://github.com/torvalds/linux/commit/520778042ccca019f3ffa136dd0ca565c486cedd https://github.com/torvalds/linux/commit/0b2d8a7b638b5034d2d68f6add8af94daaa1d4cd

References

https://seclists.org/oss-sec/2022/q2/159
https://git.kernel.org/pub/scm/linux/kernel/git/netdev/net.git/commit/net/netfilter?id=520778042ccca019f3ffa136dd0ca565c486cedd
https://github.com/torvalds/linux/commit/520778042ccca019f3ffa136dd0ca565c486cedd
https://github.com/torvalds/linux/commit/0b2d8a7b638b5034d2d68f6add8af94daaa1d4cd