Lucene search
HistoryAug 05, 2022 - 5:15 p.m.
CVE-2022-1973
use-after-free
linux kernel
ntfs journal
local attacker
crash
kernel information leak
CVSS3
7.1
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
EPSS
0
Percentile
5.1%
A use-after-free flaw was found in the Linux kernel in log_replay in fs/ntfs3/fslog.c in the NTFS journal. This flaw allows a local attacker to crash the system and leads to a kernel information leak problem.
Affected configurations
Node
linuxlinux_kernelRange5.15–5.15.46
ORlinuxlinux_kernelRange5.16–5.17.14
ORlinuxlinux_kernelRange5.18–5.18.3
Node
fedoraprojectfedoraMatch35
ORfedoraprojectfedoraMatch36
Node
netapph300s_firmwareMatch-
netapph300sMatch-
Node
netapph500s_firmwareMatch-
netapph500sMatch-
Node
netapph700s_firmwareMatch-
netapph700sMatch-
Node
netapph410s_firmwareMatch-
netapph410sMatch-
Node
netapph410c_firmwareMatch-
netapph410cMatch-
| Vendor | Product | Version | CPE |
|---|---|---|---|
| linux | linux_kernel | * | cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* |
| fedoraproject | fedora | 35 | cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:* |
| fedoraproject | fedora | 36 | cpe:2.3:o:fedoraproject:fedora:36:*:*:*:*:*:*:* |
| netapp | h300s_firmware | - | cpe:2.3:o:netapp:h300s_firmware:-:*:*:*:*:*:*:* |
| netapp | h300s | - | cpe:2.3:h:netapp:h300s:-:*:*:*:*:*:*:* |
| netapp | h500s_firmware | - | cpe:2.3:o:netapp:h500s_firmware:-:*:*:*:*:*:*:* |
| netapp | h500s | - | cpe:2.3:h:netapp:h500s:-:*:*:*:*:*:*:* |
| netapp | h700s_firmware | - | cpe:2.3:o:netapp:h700s_firmware:-:*:*:*:*:*:*:* |
| netapp | h700s | - | cpe:2.3:h:netapp:h700s:-:*:*:*:*:*:*:* |
| netapp | h410s_firmware | - | cpe:2.3:o:netapp:h410s_firmware:-:*:*:*:*:*:*:* |
Related
prion
prion
Design/Logic Flaw
2022-08-05 17:15:00
cve
cve
CVE-2022-1973
2022-08-05 17:15:08
openvas
openvas
Fedora: Security Advisory for kernel (FEDORA-2022-b8b1e358e1)
2022-06-17 00:00:00
Fedora: Security Advisory for kernel (FEDORA-2022-548484eeb9)
2022-06-17 00:00:00
Mageia: Security Advisory (MGASA-2022-0229)
2022-06-14 00:00:00
cbl_mariner
cbl_mariner
CVE-2022-1973 affecting package kernel for versions less than 5.15.67.1-4
2022-10-05 23:34:27
CVE-2022-1973 affecting package kernel 5.10.144.1-1
2022-10-13 00:40:31
osv
osv
CVE-2022-1973
2022-08-05 17:15:08
kernel-devel-5.18.4-1.1 on GA media
2024-06-15 00:00:00
linux-raspi vulnerabilities
2022-09-08 18:44:19
fedora
fedora
[SECURITY] Fedora 36 Update: kernel-5.17.14-300.fc36
2022-06-16 01:23:08
[SECURITY] Fedora 35 Update: kernel-5.17.14-200.fc35
2022-06-16 01:28:08
redhatcve
redhatcve
CVE-2022-1973
2022-06-08 16:07:06
cvelist
cvelist
CVE-2022-1973
2022-08-05 00:00:00
debiancve
debiancve
CVE-2022-1973
2022-08-05 17:15:08
ubuntucve
ubuntucve
CVE-2022-1973
2022-06-08 00:00:00
mageia
mageia
Updated kernel packages fix security vulnerabilities
2022-06-13 23:44:20
Updated kernel-linus packages fix security vulnerabilities
2022-06-13 23:44:20
ubuntu
ubuntu
Linux kernel vulnerabilities
2022-09-02 00:00:00
Linux kernel (Oracle) vulnerabilities
2022-09-05 00:00:00
Linux kernel (Raspberry Pi) vulnerabilities
2022-09-08 00:00:00
nessus
nessus
Ubuntu 22.04 LTS : Linux kernel (Raspberry Pi) vulnerabilities (USN-5602-1)
2022-09-08 00:00:00
Ubuntu 22.04 LTS : Linux kernel (Oracle) vulnerabilities (USN-5599-1)
2022-09-05 00:00:00
Ubuntu 20.04 LTS / 22.04 LTS : Linux kernel vulnerabilities (USN-5594-1)
2022-09-02 00:00:00
slackware
slackware
[slackware-security] Slackware 15.0 kernel
2022-08-26 04:17:47
CVSS3
7.1
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
EPSS
0
Percentile
5.1%
Related for NVD:CVE-2022-1973