CVE-2022-3524 log

Source
Severity Unknown
Remote Unknown
Type Denial of service
Description
memory leak in ipv6_renew_options() when one thread is converting an IPv6 socket into IPv4 with IPV6_ADDRFORM while another thread calls do_ipv6_setsockopt() and allocates memory to inet6_sk(sk)->XXX after conversion because the converted sk with (tcp|udp)_prot never frees the IPv6 resources, which inet6_destroy_sock() should have cleaned up
Group Package Affected Fixed Severity Status Ticket
AVG-2836 linux-zen 6.0.12-1 6.2-1 High Unknown
AVG-2835 linux-hardened 6.0.19-1 6.2-1 High Unknown
AVG-2834 linux-lts 5.15.94-1 6.2-1 High Unknown
References
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=3c52c6bb831f6335c176a0fc7214e26f43adbd11
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=1da177e4c3f41524e886b7f1b8a0c1fc7321cac2
https://kernel.dance/#CVE-2022-3524