Lucene search

K
cvelistGoogleCVELIST:CVE-2022-1055
HistoryMar 29, 2022 - 3:05 p.m.

CVE-2022-1055 Use after Free in tc_new_tfilter allowing for privilege escalation in Linux Kernel

2022-03-2915:05:13
CWE-416
Google
www.cve.org

7.9 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

A use-after-free exists in the Linux Kernel in tc_new_tfilter that could allow a local attacker to gain privilege escalation. The exploit requires unprivileged user namespaces. We recommend upgrading past commit 04c2a47ffb13c29778e2a14e414ad4cb5a5db4b5

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "product": "Kernel",
    "vendor": "Linux",
    "versions": [
      {
        "lessThan": "v5.17-rc3",
        "status": "affected",
        "version": "0",
        "versionType": "custom"
      },
      {
        "status": "unaffected",
        "version": "04c2a47ffb13c29778e2a14e414ad4cb5a5db4b5",
        "versionType": "git"
      }
    ]
  }
]