Lucene search

K
ubuntucveUbuntu.comUB:CVE-2022-21385
HistoryAug 29, 2022 - 12:00 a.m.

CVE-2022-21385

2022-08-2900:00:00
ubuntu.com
ubuntu.com
19
flaw
oracle linux
local user
crash
cvss 3.1
availability impact

CVSS3

6.2

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.001

Percentile

18.8%

A flaw in net_rds_alloc_sgs() in Oracle Linux kernels allows unprivileged
local users to crash the machine. CVSS 3.1 Base Score 6.2 (Availability
impacts). CVSS Vector (CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)

Notes

Author Note
cascardo rds module automatically loading is blocked by default
OSVersionArchitecturePackageVersionFilename
ubuntu18.04noarchlinux< 4.15.0-60.67UNKNOWN
ubuntu18.04noarchlinux-aws< 4.15.0-1047.49UNKNOWN
ubuntu16.04noarchlinux-aws-hwe< 4.15.0-1047.49~16.04.1UNKNOWN
ubuntu14.04noarchlinux-azure< 4.15.0-1059.64~14.04.1UNKNOWN
ubuntu16.04noarchlinux-azure< 4.15.0-1056.61UNKNOWN
ubuntu16.04noarchlinux-gcp< 4.15.0-1041.43UNKNOWN
ubuntu16.04noarchlinux-hwe< 4.15.0-60.67~16.04.1UNKNOWN
ubuntu18.04noarchlinux-kvm< 4.15.0-1043.43UNKNOWN
ubuntu18.04noarchlinux-oracle< 4.15.0-1022.25UNKNOWN
ubuntu16.04noarchlinux-oracle< 4.15.0-1022.25~16.04.1UNKNOWN
Rows per page:
1-10 of 121

CVSS3

6.2

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.001

Percentile

18.8%