Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatcveRedhat.comRH:CVE-2022-3565
HistoryDec 05, 2022 - 6:13 p.m.

CVE-2022-3565

2022-12-0518:13:13
redhat.com
access.redhat.com
32
linux kernel
isdn over ip
use-after-free
privilege escalation
mitigation
l1oip module
kernel module blacklist
system crash

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS

0

Percentile

5.1%

JSON

A use-after-free flaw was found in the Linux kernel’s ISDN over IP tunnel functionality in how a local user triggers the release_card() function called from l1oip_cleanup(). This flaw allows a local user to crash or potentially escalate their privileges on the system.

Mitigation

To mitigate this issue, prevent the l1oip module from being loaded. Please see <https://access.redhat.com/solutions/41278&gt; for information on how to blacklist a kernel module to prevent it from loading automatically.

Related

ubuntucve 1
nvd 1
cve 1
prion 1
cvelist 1
veracode 1
debiancve 1
nessus 65
oraclelinux 7
cloudlinux 2
ubuntu 13
openvas 40
osv 17
amazon 2
mageia 2
photon 1
debian 2
suse 1
redhat 4
rocky 2
ibm 2
slackware 1
ics 1
ubuntucve
ubuntucve
CVE-2022-3565
2022-10-17 00:00:00
nvd
nvd
CVE-2022-3565
2022-10-17 19:15:10
cve
cve
CVE-2022-3565
2022-10-17 19:15:10
prion
prion
Design/Logic Flaw
2022-10-17 19:15:00
cvelist
cvelist
CVE-2022-3565 Linux Kernel Bluetooth l1oip_core.c del_timer use after free
2022-10-17 00:00:00
veracode
veracode
Use After Free
2022-12-06 12:17:39
debiancve
debiancve
CVE-2022-3565
2022-10-17 19:15:10
nessus
nessus
SUSE SLES12 Security Update : kernel (Live Patch 28 for SLE 12 SP4) (SUSE-SU-2023:0238-1)
2023-02-05 00:00:00
SUSE SLES12 Security Update : kernel (Live Patch 33 for SLE 12 SP5) (SUSE-SU-2023:0271-1)
2023-02-07 00:00:00
SUSE SLES12 Security Update : kernel (Live Patch 24 for SLE 12 SP4) (SUSE-SU-2023:0250-1)
2023-02-05 00:00:00
oraclelinux
oraclelinux
Unbreakable Enterprise kernel security update
2022-12-12 00:00:00
Unbreakable Enterprise kernel-container security update
2022-12-13 00:00:00
Unbreakable Enterprise kernel security update
2022-12-12 00:00:00
cloudlinux
cloudlinux
kernel: Fix of 7 CVEs
2023-04-28 18:43:13
kernel: Fix of 7 CVEs
2023-04-28 19:55:00
ubuntu
ubuntu
Linux kernel (Azure) vulnerabilities
2022-12-12 00:00:00
Linux kernel (OEM) vulnerabilities
2023-03-03 00:00:00
Linux kernel vulnerabilities
2022-12-01 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-5756-1)
2022-12-02 00:00:00
Ubuntu: Security Advisory (USN-5756-2)
2022-12-05 00:00:00
Ubuntu: Security Advisory (USN-5754-1)
2022-12-02 00:00:00
osv
osv
linux-gke vulnerabilities
2022-12-02 19:32:11
linux, linux-aws, linux-aws-5.4, linux-gcp, linux-gcp-5.4, linux-gkeop, linux-hwe-5.4, linux-ibm, linux-ibm-5.4, linux-kvm, linux-oracle, linux-oracle-5.4, linux-raspi, linux-raspi-5.4 vulnerabilities
2022-12-01 18:26:23
linux-azure, linux-azure-5.4 vulnerabilities
2022-12-12 13:44:43
amazon
amazon
Important: kernel
2022-10-31 19:40:00
Important: kernel
2022-12-01 17:33:00
mageia
mageia
Updated kernel-linus packages fix security vulnerabilities
2022-11-27 23:51:49
Updated kernel packages fix security vulnerabilities
2022-11-27 23:51:49
photon
photon
Important Photon OS Security Update - PHSA-2022-4.0-0275
2022-11-04 00:00:00
debian
debian
[SECURITY] [DLA 3244-1] linux-5.10 security update
2022-12-22 13:40:03
[SECURITY] [DLA 3245-1] linux security update
2022-12-23 22:16:58
suse
suse
Security update for the Linux Kernel (important)
2022-11-08 00:00:00
redhat
redhat
(RHSA-2023:6583) Important: kernel security, bug fix, and enhancement update
2023-11-07 06:09:24
(RHSA-2024:2950) Moderate: kernel-rt security and bug fix update
2024-05-22 06:35:10
(RHSA-2024:3138) Moderate: kernel security, bug fix, and enhancement update
2024-05-22 06:35:43
rocky
rocky
kernel security, bug fix, and enhancement update
2024-06-14 13:59:16
kernel-rt security and bug fix update
2024-06-14 13:59:36
ibm
ibm
Security Bulletin: IBM QRadar SIEM contains multiple kernel vulnerabilities
2024-06-07 15:32:38
Security Bulletin: Multiple Vulnerabilities in IBM CloudPak for AIOps
2024-06-26 16:06:34
slackware
slackware
[slackware-security] Slackware 15.0 kernel
2022-11-29 21:04:28
ics
ics
Siemens SIMATIC S7-1500 TM MFP Linux Kernel
2023-06-15 12:00:00

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS

0

Percentile

5.1%

JSON
Related for RH:CVE-2022-3565
ubuntucve1nvd1cve1prion1cvelist1veracode1debiancve1nessus65oraclelinux7cloudlinux2ubuntu13openvas40osv17amazon2mageia2photon1debian2suse1redhat4rocky2ibm2slackware1ics1