CVE-2022-4744

🗓️ 30 Mar 2023 00:00:00Reported by redhatType

"Linux kernel TUN/TAP device driver double-free flaw allows local user privilege escalation

Reporter	Title	Published	Views	Family All 601
IBM Security Bulletins	Security Bulletin: Multiple Vulnerabilities in CloudPak for AIOps	26 Mar 202504:06	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Technical Suppport Appliance - possible security flaws or denial of service	21 Nov 202421:27	–	ibm
Tenable Nessus	Amazon Linux 2 : kernel, --advisory ALAS2KERNEL-5.10-2022-020 (ALASKERNEL-5.10-2022-020)	14 Oct 202200:00	–	nessus
Tenable Nessus	Amazon Linux 2 : kernel, --advisory ALAS2KERNEL-5.4-2023-044 (ALASKERNEL-5.4-2023-044)	1 May 202300:00	–	nessus
Tenable Nessus	Alibaba Cloud Linux 3 : 0042: cloud-kernel bugfix, enhancement and (ALINUX3-SA-2023:0042)	14 May 202500:00	–	nessus
Tenable Nessus	Alibaba Cloud Linux 3 : 0079: cloud-kernel bugfix, enhancement and (ALINUX3-SA-2023:0079)	14 May 202500:00	–	nessus
Tenable Nessus	AlmaLinux 9 : kernel-rt (ALSA-2023:1469)	27 Mar 202300:00	–	nessus
Tenable Nessus	AlmaLinux 9 : kernel (ALSA-2023:1470)	27 Mar 202300:00	–	nessus
Tenable Nessus	AlmaLinux 9 : kpatch-patch (ALSA-2023:1471)	27 Mar 202300:00	–	nessus
Tenable Nessus	CentOS 9 : kernel-5.14.0-347.el9	29 Feb 202400:00	–	nessus

NVD

Vulners

Node

linux linux_kernelRange5.5–5.10.136

linux linux_kernelRange5.11–5.15.12

[
  {
    "vendor": "n/a",
    "product": "Kernel",
    "versions": [
      {
        "version": "Linux kernel 5.16-rc7",
        "status": "affected"
      }
    ]
  }
]

Source	Link
git	www.git.kernel.org/pub/scm/linux/kernel/git/netdev/net.git/commit/
packetstormsecurity	www.packetstormsecurity.com/files/171912/CentOS-Stream-9-Missing-Kernel-Security-Fix.html
lists	www.lists.debian.org/debian-lts-announce/2023/05/msg00006.html
security	www.security.netapp.com/advisory/ntap-20230526-0009/

14 Feb 2025 16:15Current

7.3High risk

Vulners AI Score7.3

CVSS 3.17.8

EPSS0.00098

SSVC