kernel: a use-after-free write in the netfilter subsystem can lead to privilege escalation to root

A use-after-free vulnerability was found in the Linux kernel's Netfilter subsystem in net/netfilter/nftablesapi.c. This flaw allows a local attacker with user access to cause a privilege escalation issue...

kernel: a use-after-free write in the netfilter subsystem can lead to privilege escalation to root

A use-after-free vulnerability was found in the Linux kernel's Netfilter subsystem in net/netfilter/nftablesapi.c. This flaw allows a local attacker with user access to cause a privilege escalation issue...

kernel: a use-after-free write in the netfilter subsystem can lead to privilege escalation to root

A use-after-free vulnerability was found in the Linux kernel's Netfilter subsystem in net/netfilter/nftablesapi.c. This flaw allows a local attacker with user access to cause a privilege escalation issue...

kernel: a use-after-free write in the netfilter subsystem can lead to privilege escalation to root

A use-after-free vulnerability was found in the Linux kernel's Netfilter subsystem in net/netfilter/nftablesapi.c. This flaw allows a local attacker with user access to cause a privilege escalation issue...

kernel: netfilter: nf_tables: incorrect NFT_STATEFUL_EXPR check leads to a use-after-free (write)

REJECTED CVE A use-after-free vulnerability has been identified in the Linux Kernel's netfilter subsystem that did not properly handle the removal of stateful expressions in some situations. A local attacker could use this to cause a denial of service system crash or execute arbitrary code...

Important: Red Hat Security Advisory: kpatch-patch security update

An update for kpatch-patch is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

RHEL 9 : kpatch-patch (RHSA-2022:5214)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2022:5214 advisory. This is a kernel live patch module which is automatically loaded by the RPM post-install script to modify the code of a running kernel...

RHEL 7 : kernel-rt (RHSA-2022:5236)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:5236 advisory. The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirement...

The vulnerability of the Local Security Authority Subsystem Service (LSASS) in Windows operating systems allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Local Security Authority Subsystem Service LSASS in Windows operating systems is related to the disclosure of information. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

LSN-0087-1 Kernel Live Patch Security Notice

Aaron Adams discovered that the netfilter subsystem in the Linux kernel did not properly handle the removal of stateful expressions in some situations, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service system crash or execute arbitrary...

CVE-2022-30166

Local Security Authority Subsystem Service Elevation of Privilege Vulnerability...

CVE-2022-30166

Local Security Authority Subsystem Service Elevation of Privilege Vulnerability...

Privilege escalation

Local Security Authority Subsystem Service Elevation of Privilege Vulnerability...

CVE-2022-30166

Local Security Authority Subsystem Service Elevation of Privilege Vulnerability...

CVE-2022-30166

Technical details for CVE-2022-30166 are not publicly provided in the supplied documents. No affected products, root cause, or remediation are specified here; monitor for updates from official advisories.

CVE-2022-30166 Local Security Authority Subsystem Service Elevation of Privilege Vulnerability

...

Microsoft Windows Local Security Authority Subsystem Service 安全漏洞

The Microsoft Windows Local Security Authority Subsystem Service is an internal Microsoft program that runs Windows system security policies. It authenticates users when they log on to a computer standalone or server, manages user password changes, and generates access characters. It also leaves...

Oracle Linux 7 / 8 : Unbreakable Enterprise kernel (ELSA-2022-9479)

The remote Oracle Linux 7 / 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2022-9479 advisory. - perf: Fix sysperfeventopen race against self Peter Zijlstra Orabug: 34211086 CVE-2022-1729 - debug: Lock down kgdb Stephen Brennan Orabug: 342110...

Oracle Linux 7 : Unbreakable Enterprise kernel-container (ELSA-2022-9478)

The remote Oracle Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2022-9478 advisory. - perf: Fix sysperfeventopen race against self Peter Zijlstra Orabug: 34207044 CVE-2022-1729 - debug: Lock down kgdb Stephen Brennan Orabug: 34207043...

MGASA-2022-0229 Updated kernel packages fix security vulnerabilities

This kernel update is based on upstream 5.15.46 and fixes at least the following security issues: KVM: x86: avoid calling x86 emulator without a decoded instruction CVE-2022-1852. A use-after-free vulnerability was found in the Linux kernel's Netfilter subsystem in net/netfilter/nftablesapi.c. Th...