Lucene search
Redhat.comRH:CVE-2022-0886HistoryMar 11, 2022 - 6:41 p.m.
CVE-2022-0886
2022-03-1118:41:34
redhat.com
access.redhat.com
28
A heap buffer overflow flaw was found in IPsec ESP transformation code in net/ipv4/esp4.c and net/ipv6/esp6.c. This flaw allows a local attacker with a normal user privilege to overwrite kernel heap objects and may cause a local privilege escalation threat.
Mitigation
The given exploit needs CAP_NET_ADMIN to set up IPsec SA and a user namespace is used to get that capability, so disabling unprivileged user namespaces gives some protection.
On non-containerized deployments of Red Hat Enterprise Linux 8, you can disable user namespaces by setting user.max_user_namespaces to 0:
# echo "user.max_user_namespaces=0" > /etc/sysctl.d/userns.conf
# sysctl -p /etc/sysctl.d/userns.conf
On containerized deployments, such as Red Hat OpenShift Container Platform, do not use this mitigation as the functionality is needed to be enabled.
Note: If the target system is already using IPsec and has SA configured, then no additional privileges are needed to exploit the issue.
Related
debiancve
debiancve
CVE-2022-0886
2022-03-23 14:15:00
prion
prion
Design/Logic Flaw
2022-03-23 14:15:00
cve
cve
CVE-2022-0886
2022-03-23 14:15:00
fedora
fedora
[SECURITY] Fedora 34 Update: kernel-5.16.15-101.fc34
2022-03-18 19:15:59
[SECURITY] Fedora 35 Update: kernel-5.16.15-201.fc35
2022-03-18 20:08:47
nessus
nessus
SUSE SLES12 Security Update : kernel (Live Patch 20 for SLE 12 SP4) (SUSE-SU-2022:1320-1)
2022-04-24 00:00:00
SUSE SLES15 Security Update : kernel (SUSE-SU-2022:1255-1)
2022-04-20 00:00:00
openvas
openvas
Fedora: Security Advisory for kernel (FEDORA-2022-9342e59a98)
2022-03-23 00:00:00
Fedora: Security Advisory for kernel (FEDORA-2022-de4474b89d)
2022-03-23 00:00:00
SUSE: Security Advisory (SUSE-SU-2022:1255-1)
2022-04-20 00:00:00
Related for RH:CVE-2022-0886