Lucene search

[email protected]NVD:CVE-2022-30594

HistoryMay 12, 2022 - 5:15 a.m.

CVE-2022-30594

2022-05-1205:15:06

CWE-862

[email protected]

web.nvd.nist.gov

4.4 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:M/Au:N/C:P/I:P/A:P

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

0.001 Low

EPSS

Percentile

44.3%

JSON

The Linux kernel before 5.17.2 mishandles seccomp permissions. The PTRACE_SEIZE code path allows attackers to bypass intended restrictions on setting the PT_SUSPEND_SECCOMP flag.

Affected configurations

NVD

Node

linuxlinux_kernelRange<4.19.238

linuxlinux_kernelRange4.20–5.4.189

linuxlinux_kernelRange5.5.0–5.10.110

linuxlinux_kernelRange5.11–5.15.33

linuxlinux_kernelRange5.16.0–5.16.19

linuxlinux_kernelRange5.17–5.17.2

Node

debiandebian_linuxMatch9.0

debiandebian_linuxMatch10.0

Node

netappsolidfire\,_enterprise_sds_\&_hci_storage_nodeMatch-

netappsolidfire_\&_hci_management_nodeMatch-

netapphci_compute_nodeMatch-

Node

netapp8300Match-

AND

netapp8300_firmwareMatch-

Node

netapp8700Match-

AND

netapp8700_firmwareMatch-

Node

netappa400Match-

AND

netappa400_firmwareMatch-

Node

netapph300sMatch-

AND

netapph300s_firmwareMatch-

Node

netapph500sMatch-

AND

netapph500s_firmwareMatch-

Node

netapph700sMatch-

AND

netapph700s_firmwareMatch-

Node

netapph410sMatch-

AND

netapph410s_firmwareMatch-

Node

netapph410c_firmwareMatch-

AND

netapph410cMatch-

References

packetstormsecurity.com/files/167386/Kernel-Live-Patch-Security-Notice-LSN-0086-1.html

packetstormsecurity.com/files/170362/Linux-PT_SUSPEND_SECCOMP-Permission-Bypass-Ptracer-Death-Race.html

bugs.chromium.org/p/project-zero/issues/detail?id=2276

cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.17.2

git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=ee1fee900537b5d9560e9f937402de5ddc8412f3

github.com/torvalds/linux/commit/ee1fee900537b5d9560e9f937402de5ddc8412f3

lists.debian.org/debian-lts-announce/2022/07/msg00000.html

security.netapp.com/advisory/ntap-20220707-0001/

www.debian.org/security/2022/dsa-5173

4.4 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:M/Au:N/C:P/I:P/A:P

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

0.001 Low

EPSS

Percentile

44.3%

JSON

Related for NVD:CVE-2022-30594

nessus80 cbl_mariner1 osv19 ubuntucve1 debiancve1 openvas38 redhatcve1 prion1 githubexploit1 cve1 veracode1 cvelist1 almalinux6 rocky5 redhat11 ubuntu6 oraclelinux3 photon5 amazon3 suse6 debian2 ibm1 ics1