CVE-2022-1966 log

Source
Severity High
Remote No
Type Privilege escalation
Description
a user with the ability to create user/net namespaces can exploit a use-after-free write in netflter to achieve privilege escalation to root.
Group Package Affected Fixed Severity Status Ticket
AVG-2754 linux-lts 5.15.44-1 5.15.45-1 High Fixed
AVG-2753 linux-zen 5.18.1.zen1-1 5.18.2.zen1-1 High Fixed
AVG-2752 linux-hardened 5.17.12.hardened2-2 5.17.13.hardened1-1 High Fixed
AVG-2751 linux 5.18.1-1 5.18.2-1 High Fixed
References
https://seclists.org/oss-sec/2022/q2/159
https://git.kernel.org/pub/scm/linux/kernel/git/netdev/net.git/commit/net/netfilter?id=520778042ccca019f3ffa136dd0ca565c486cedd
https://github.com/torvalds/linux/commit/520778042ccca019f3ffa136dd0ca565c486cedd
https://github.com/torvalds/linux/commit/0b2d8a7b638b5034d2d68f6add8af94daaa1d4cd