CVE-2022-1972 log

Source	CVE Red Hat MITRE NVD Debian Ubuntu SUSE Alpine Mageia CVE Details CIRCL Bugs Arch Linux Red Hat Gentoo SUSE GitHub Lists oss-security full-disclosure bugtraq Misc GitHub code web search
Severity	High
Remote	No
Type	Privilege escalation
Description	a user with the ability to create user/net namespaces can exploit an out-of-bounds write in netflter to achieve privilege escalation to root.

Group	Package	Affected	Fixed	Severity	Status
AVG-2754	linux-lts	5.15.44-1	5.15.45-1	High	Fixed
AVG-2753	linux-zen	5.18.1.zen1-1	5.18.2.zen1-1	High	Fixed
AVG-2752	linux-hardened	5.17.12.hardened2-2	5.17.13.hardened1-1	High	Fixed
AVG-2751	linux	5.18.1-1	5.18.2-1	High	Fixed

References
https://seclists.org/oss-sec/2022/q2/164 https://git.kernel.org/pub/scm/linux/kernel/git/netdev/net.git/commit/?id=fecf31ee395b0295f2d7260aa29946b7605f7c85 https://github.com/torvalds/linux/commit/fecf31ee395b0295f2d7260aa29946b7605f7c85 https://github.com/torvalds/linux/commit/f3a2181e16f1dcbf5446ed43f6b5d9f56c459f85

References

https://seclists.org/oss-sec/2022/q2/164
https://git.kernel.org/pub/scm/linux/kernel/git/netdev/net.git/commit/?id=fecf31ee395b0295f2d7260aa29946b7605f7c85
https://github.com/torvalds/linux/commit/fecf31ee395b0295f2d7260aa29946b7605f7c85
https://github.com/torvalds/linux/commit/f3a2181e16f1dcbf5446ed43f6b5d9f56c459f85