Lucene search
HistoryJul 27, 2022 - 4:15 a.m.
CVE-2022-36879
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
0.0004 Low
EPSS
Percentile
14.2%
An issue was discovered in the Linux kernel through 5.18.14. xfrm_expand_policies in net/xfrm/xfrm_policy.c can cause a refcount to be dropped twice.
Affected configurations
Node
linuxlinux_kernelRange≤5.18.14
Node
debiandebian_linuxMatch10.0
ORdebiandebian_linuxMatch11.0
Node
netappa700s_firmwareMatch-
netappa700sMatch-
Node
netappactive_iq_unified_managerMatch-vmware_vsphere
ORnetappe-series_santricity_os_controllerRange11.0–11.50.2
ORnetapphci_bootstrap_osMatch-
Node
netappaff_8300_firmwareMatch-
netappaff_8300Match-
Node
netappfas_8300_firmwareMatch-
netappfas_8300Match-
Node
netappaff_8700_firmwareMatch-
netappaff_8700Match-
Node
netappfas_8700_firmwareMatch-
netappfas_8700Match-
Node
netappaff_a400_firmwareMatch-
netappaff_a400Match-
Node
netappfas_a400_firmwareMatch-
netappfas_a400Match-
Node
netappaff_a250_firmwareMatch-
netappaff_a250Match-
Node
netappfas_a250_firmwareMatch-
netappfas_a250Match-
Node
netappfas_500f_firmwareMatch-
netappfas_500fMatch-
Node
netappaff_500f_firmwareMatch-
netappaff_500fMatch-
Node
netapph300s_firmwareMatch-
netapph300sMatch-
Node
netapph500s_firmwareMatch-
netapph500sMatch-
Node
netapph700s_firmwareMatch-
netapph700sMatch-
Node
netapph410s_firmwareMatch-
netapph410sMatch-
Node
netapph410c_firmwareMatch-
netapph410cMatch-
Node
netapph610c_firmwareMatch-
netapph610cMatch-
Node
netapph610s_firmwareMatch-
netapph610sMatch-
Node
netapph615c_firmwareMatch-
netapph615cMatch-
References
git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit?id=f85daf0e725358be78dfd208dea5fd665d8cb901
github.com/torvalds/linux/commit/f85daf0e725358be78dfd208dea5fd665d8cb901
lists.debian.org/debian-lts-announce/2022/09/msg00011.html
lists.debian.org/debian-lts-announce/2022/10/msg00000.html
security.netapp.com/advisory/ntap-20220901-0007/
www.debian.org/security/2022/dsa-5207
Related
veracode
veracode
Denial Of Service (DoS)
2022-10-12 10:37:43
cve
cve
CVE-2022-36879
2022-07-27 04:15:10
cnvd
cnvd
Linux kernel has unspecified vulnerabilities (CNVD-2022-54887)
2022-08-01 00:00:00
cvelist
cvelist
CVE-2022-36879
2022-07-27 03:27:41
osv
osv
ubuntucve
ubuntucve
CVE-2022-36879
2022-07-27 00:00:00
cbl_mariner
cbl_mariner
CVE-2022-36879 affecting package kernel 5.10.131.1-1
2022-09-17 05:57:05
CVE-2022-36879 affecting package kernel for versions less than 5.15.67.1-4
2022-10-05 23:34:27
debiancve
debiancve
CVE-2022-36879
2022-07-27 04:15:10
redhatcve
redhatcve
CVE-2022-36879
2022-08-19 17:19:44
prion
prion
Code injection
2022-07-27 04:15:00
nessus
nessus
Amazon Linux 2 : kernel (ALAS-2022-1833)
2022-08-19 00:00:00
Ubuntu 22.04 LTS : Linux kernel (Intel IoTG) vulnerabilities (USN-5703-1)
2022-10-26 00:00:00
Ubuntu 20.04 LTS / 22.04 LTS : Linux kernel vulnerabilities (USN-5667-1)
2022-10-11 00:00:00
amazon
amazon
Medium: kernel
2022-08-15 21:03:00
Important: kernel
2022-09-30 07:04:00
Important: kernel
2022-09-30 07:04:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2022-10-10 00:00:00
Linux kernel (Intel IoTG) vulnerabilities
2022-10-26 00:00:00
Linux kernel (GCP) vulnerabilities
2022-11-18 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-5703-1)
2022-10-27 00:00:00
Ubuntu: Security Advisory (USN-5667-1)
2022-10-11 00:00:00
Mageia: Security Advisory (MGASA-2022-0279)
2022-08-08 00:00:00
mageia
mageia
Updated kernel-linus packages fix security vulnerabilities
2022-08-06 18:43:47
Updated kernel packages fix security vulnerabilities
2022-08-06 18:43:47
debian
debian
[SECURITY] [DSA 5207-1] linux security update
2022-08-15 19:52:20
[SECURITY] [DLA 3102-1] linux-5.10 new package
2022-09-11 19:35:03
[SECURITY] [DLA 3131-1] linux security update
2022-10-02 16:44:48
photon
photon
Important Photon OS Security Update - PHSA-2022-0248
2022-09-20 00:00:00
Important Photon OS Security Update - PHSA-2022-3.0-0446
2022-09-07 00:00:00
Important Photon OS Security Update - PHSA-2022-4.0-0248
2022-09-20 00:00:00
redhat
redhat
(RHSA-2024:0432) Important: kernel security and bug fix update
2024-01-24 14:40:37
(RHSA-2024:0431) Important: kernel-rt security and bug fix update
2024-01-24 14:40:36
(RHSA-2023:5627) Important: kernel security, bug fix, and enhancement update
2023-10-10 16:07:20
ibm
ibm
oraclelinux
oraclelinux
Unbreakable Enterprise kernel security update
2022-10-04 00:00:00
suse
suse
Security update for the Linux Kernel (important)
2022-09-27 00:00:00
Security update for the Linux Kernel (important)
2022-09-14 00:00:00
Security update for the Linux Kernel (important)
2022-09-16 00:00:00
redos
redos
ROS-20221220-01
2022-12-20 00:00:00
slackware
slackware
[slackware-security] Slackware 15.0 kernel
2022-08-26 04:17:47
ics
ics
Siemens SCALANCE, RUGGEDCOM Third-Party
2023-03-16 12:00:00
Siemens SIMATIC S7-1500 TM MFP Linux Kernel
2023-06-15 12:00:00
avleonov
avleonov
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
0.0004 Low
EPSS
Percentile
14.2%
Related for NVD:CVE-2022-36879