Lucene search

[email protected]CVE-2022-29156

HistoryApr 13, 2022 - 7:15 a.m.

CVE-2022-29156

2022-04-1307:15:00

CWE-415

[email protected]

web.nvd.nist.gov

cve-2022-29156

linux kernel

double free

rtrs_clt_dev_release

nvd

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.2 High

AI Score

Confidence

High

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

11.7%

JSON

drivers/infiniband/ulp/rtrs/rtrs-clt.c in the Linux kernel before 5.16.12 has a double free related to rtrs_clt_dev_release.

CPENameOperatorVersion
linux:linux_kernellinux linux kernellt5.10.103
linux:linux_kernellinux linux kernellt5.15.26
linux:linux_kernellinux linux kernellt5.16.12
netapp:h300e_firmwarenetapp h300e firmwareeq-
netapp:h300s_firmwarenetapp h300s firmwareeq-
netapp:h410c_firmwarenetapp h410c firmwareeq-
netapp:h410s_firmwarenetapp h410s firmwareeq-
netapp:h500e_firmwarenetapp h500e firmwareeq-
netapp:h500s_firmwarenetapp h500s firmwareeq-
netapp:h700e_firmwarenetapp h700e firmwareeq-

CPE	Name	Operator	Version
linux:linux_kernel	linux linux kernel	lt	5.10.103
linux:linux_kernel	linux linux kernel	lt	5.15.26
linux:linux_kernel	linux linux kernel	lt	5.16.12
netapp:h300e_firmware	netapp h300e firmware	eq	-
netapp:h300s_firmware	netapp h300s firmware	eq	-
netapp:h410c_firmware	netapp h410c firmware	eq	-
netapp:h410s_firmware	netapp h410s firmware	eq	-
netapp:h500e_firmware	netapp h500e firmware	eq	-
netapp:h500s_firmware	netapp h500s firmware	eq	-
netapp:h700e_firmware	netapp h700e firmware	eq	-