CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS
Percentile
17.9%
The kernel packages contain the Linux kernel, the core of any Linux operating system.
Security Fix(es):
kernel: memory corruption in AX88179_178A based USB ethernet device. (CVE-2022-2964)
kernel: use-after-free caused by l2cap_reassemble_sdu() in net/bluetooth/l2cap_core.c (CVE-2022-3564)
kernel: stack overflow in do_proc_dointvec and proc_skip_spaces (CVE-2022-4378)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Vendor | Product | Version | CPE |
---|---|---|---|
redhat | kernel-rt | * | cpe:2.3:o:redhat:kernel-rt:*:*:*:*:*:*:*:* |
redhat | kernel | * | cpe:2.3:a:redhat:kernel:*:*:*:*:*:*:*:* |
redhat | virtualization_host | * | cpe:2.3:a:redhat:virtualization_host:*:*:*:*:*:*:*:* |
redhat | enterprise_linux | 7 | cpe:2.3:o:redhat:enterprise_linux:7:*:*:*:*:*:*:* |
redhat | enterprise_linux | nfv | cpe:2.3:o:redhat:enterprise_linux:nfv:*:*:*:*:*:*:* |
redhat | enterprise_linux | 8 | cpe:2.3:o:redhat:enterprise_linux:8:*:*:*:*:*:*:* |
redhat | enterprise_linux | 9 | cpe:2.3:o:redhat:enterprise_linux:9:*:*:*:*:*:*:* |