Lucene search

K
osvGoogleOSV:ASB-A-197154735
HistoryMar 01, 2022 - 12:00 a.m.

Linux kernel vulnerability advisory

2022-03-0100:00:00
Google
osv.dev
7

6.3 Medium

AI Score

Confidence

High

0.0005 Low

EPSS

Percentile

17.1%

In sctp_v6_to_sk_daddr, sctp_v4_from_addr_param, and related functions of ipv6.c, protocol.c, and related files, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure to an on-path attacker with no additional execution privileges needed. User interaction is not needed for exploitation.

CPENameOperatorVersion
:linux_kernel:eqKernel