CVE-2022-3524 log

Source	CVE Red Hat MITRE NVD Debian Ubuntu SUSE Alpine Mageia CVE Details CIRCL Bugs Arch Linux Red Hat Gentoo SUSE GitHub Lists oss-security full-disclosure bugtraq Misc GitHub code web search
Severity	Unknown
Remote	Unknown
Type	Denial of service
Description	memory leak in ipv6_renew_options() when one thread is converting an IPv6 socket into IPv4 with IPV6_ADDRFORM while another thread calls do_ipv6_setsockopt() and allocates memory to inet6_sk(sk)->XXX after conversion because the converted sk with (tcp\|udp)_prot never frees the IPv6 resources, which inet6_destroy_sock() should have cleaned up

Group	Package	Affected	Fixed	Severity	Status
AVG-2836	linux-zen	6.0.12-1	6.2-1	High	Unknown
AVG-2835	linux-hardened	6.0.19-1	6.2-1	High	Unknown
AVG-2834	linux-lts	5.15.94-1	6.2-1	High	Unknown

References
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=3c52c6bb831f6335c176a0fc7214e26f43adbd11 https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 https://kernel.dance/#CVE-2022-3524

References

https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=3c52c6bb831f6335c176a0fc7214e26f43adbd11
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=1da177e4c3f41524e886b7f1b8a0c1fc7321cac2
https://kernel.dance/#CVE-2022-3524