Veracode Vulnerability DatabaseVERACODE:33774Denial Of Service (DoS)
8.4 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
linux is vulnerable to denial of service (DoS) attacks. A malicious user is able to cause heap overflow in legacy parameter, causing it to crash.
References
git://git.launchpad.net/ubuntu-cve-tracker/tree/active/CVE-2022-0185
access.redhat.com/errata/RHSA-2022:0176
access.redhat.com/errata/RHSA-2022:0186
access.redhat.com/errata/RHSA-2022:0187
access.redhat.com/errata/RHSA-2022:0188
access.redhat.com/errata/RHSA-2022:0231
access.redhat.com/errata/RHSA-2022:0232
access.redhat.com/errata/RHSA-2022:0540
access.redhat.com/security/cve/CVE-2022-0185
bugzilla.redhat.com/show_bug.cgi?id=2040358
git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=722d94847de2
github.com/Crusaders-of-Rust/CVE-2022-0185
security.netapp.com/advisory/ntap-20220225-0003/
www.openwall.com/lists/oss-security/2022/01/18/7
www.willsroot.io/2022/01/cve-2022-0185.html
Related
8.4 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C