fkie_cve-2022-3544
Vulnerability from fkie_nvd
Published
2022-10-17 12:15
Modified
2024-11-21 07:19
Severity ?
3.5 (Low) - CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
5.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
5.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Summary
A vulnerability, which was classified as problematic, was found in Linux Kernel. Affected is the function damon_sysfs_add_target of the file mm/damon/sysfs.c of the component Netfilter. The manipulation leads to memory leak. It is recommended to apply a patch to fix this issue. The identifier of this vulnerability is VDB-211044.
References
Impacted products
Vendor | Product | Version | |
---|---|---|---|
linux | linux_kernel | * | |
linux | linux_kernel | 6.0 | |
linux | linux_kernel | 6.0 | |
linux | linux_kernel | 6.0 | |
linux | linux_kernel | 6.0 | |
linux | linux_kernel | 6.0 | |
linux | linux_kernel | 6.0 | |
linux | linux_kernel | 6.0 |
{ configurations: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", matchCriteriaId: "87B81C9D-7173-4FFB-97BC-9C41AB20A53C", versionEndExcluding: "6.0", vulnerable: true, }, { criteria: "cpe:2.3:o:linux:linux_kernel:6.0:rc1:*:*:*:*:*:*", matchCriteriaId: "E8BD11A3-8643-49B6-BADE-5029A0117325", vulnerable: true, }, { criteria: "cpe:2.3:o:linux:linux_kernel:6.0:rc2:*:*:*:*:*:*", matchCriteriaId: "5F0AD220-F6A9-4012-8636-155F1B841FAD", vulnerable: true, }, { criteria: "cpe:2.3:o:linux:linux_kernel:6.0:rc3:*:*:*:*:*:*", matchCriteriaId: "A46498B3-78E1-4623-AAE1-94D29A42BE4E", vulnerable: true, }, { criteria: "cpe:2.3:o:linux:linux_kernel:6.0:rc4:*:*:*:*:*:*", matchCriteriaId: "F8446E87-F5F6-41CA-8201-BAE0F0CA6DD9", vulnerable: true, }, { criteria: "cpe:2.3:o:linux:linux_kernel:6.0:rc5:*:*:*:*:*:*", matchCriteriaId: "8E5FB72F-67CE-43CC-83FE-541604D98182", vulnerable: true, }, { criteria: "cpe:2.3:o:linux:linux_kernel:6.0:rc6:*:*:*:*:*:*", matchCriteriaId: "3A0A7397-F5F8-4753-82DC-9A11288E696D", vulnerable: true, }, { criteria: "cpe:2.3:o:linux:linux_kernel:6.0:rc7:*:*:*:*:*:*", matchCriteriaId: "E6DE049A-ABA8-41DD-988C-8C088358EE9B", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, ], cveTags: [], descriptions: [ { lang: "en", value: "A vulnerability, which was classified as problematic, was found in Linux Kernel. Affected is the function damon_sysfs_add_target of the file mm/damon/sysfs.c of the component Netfilter. The manipulation leads to memory leak. It is recommended to apply a patch to fix this issue. The identifier of this vulnerability is VDB-211044.", }, { lang: "es", value: "Se ha encontrado una vulnerabilidad, clasificada como problemática, en el Kernel de Linux. Está afectada la función damon_sysfs_add_target del archivo mm/damon/sysfs.c del componente Netfilter. La manipulación conlleva a una pérdida de memoria. Es recomendado aplicar un parche para corregir este problema. El identificador de esta vulnerabilidad es VDB-211044", }, ], id: "CVE-2022-3544", lastModified: "2024-11-21T07:19:44.153", metrics: { cvssMetricV31: [ { cvssData: { attackComplexity: "LOW", attackVector: "ADJACENT_NETWORK", availabilityImpact: "LOW", baseScore: 3.5, baseSeverity: "LOW", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L", version: "3.1", }, exploitabilityScore: 2.1, impactScore: 1.4, source: "cna@vuldb.com", type: "Secondary", }, { cvssData: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 5.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, exploitabilityScore: 1.8, impactScore: 3.6, source: "nvd@nist.gov", type: "Primary", }, ], }, published: "2022-10-17T12:15:11.057", references: [ { source: "cna@vuldb.com", tags: [ "Patch", "Vendor Advisory", ], url: "https://git.kernel.org/pub/scm/linux/kernel/git/netfilter/nf-next.git/commit/?id=1c8e2349f2d033f634d046063b704b2ca6c46972", }, { source: "cna@vuldb.com", tags: [ "Third Party Advisory", ], url: "https://vuldb.com/?id.211044", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Patch", "Vendor Advisory", ], url: "https://git.kernel.org/pub/scm/linux/kernel/git/netfilter/nf-next.git/commit/?id=1c8e2349f2d033f634d046063b704b2ca6c46972", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Third Party Advisory", ], url: "https://vuldb.com/?id.211044", }, ], sourceIdentifier: "cna@vuldb.com", vulnStatus: "Modified", weaknesses: [ { description: [ { lang: "en", value: "CWE-404", }, ], source: "cna@vuldb.com", type: "Primary", }, ], }
Log in or create an account to share your comment.
Security Advisory comment format.
This schema specifies the format of a comment related to a security advisory.
Title of the comment
Description of the comment
Loading…
Loading…
Loading…
Sightings
Author | Source | Type | Date |
---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.