Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
NA

CVE-2022-1016

Published: 29/08/2022 Updated: 27/06/2023
CVSS v3 Base Score: 5.5 | Impact Score: 3.6 | Exploitability Score: 1.8
VMScore: 0
Subscribe to Linux

Vulnerability Summary

It exists that the DMA subsystem in the Linux kernel did not properly ensure bounce buffers were completely overwritten by the DMA device. A local attacker could use this to expose sensitive information (kernel memory). (CVE-2022-0854) ATTENTION: Due to an unavoidable ABI change the kernel updates have been given a new version number, which requires you to recompile and reinstall all third party kernel modules you might have installed. Unless you manually uninstalled the standard kernel metapackages (e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual, linux-powerpc), a standard system upgrade will automatically perform this as well.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

linux linux kernel

linux linux kernel 3.13

redhat enterprise linux 8.0

redhat enterprise linux 9.0

Vendor Advisories

Debian Security Advisories: DSA-5173-1 linux -- security update
Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or information leaks CVE-2021-4197 Eric Biederman reported that incorrect permission checks in the cgroup process migration implementation can allow a local attacker to escalate privileges CVE-2022-0494 The ...
Debian Security Advisories: DSA-5127-1 linux -- security update
Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or information leaks CVE-2021-4197 Eric Biederman reported that incorrect permission checks in the cgroup process migration implementation can allow a local attacker to escalate privileges CVE-2022-0168 A NU ...
Red Hat: Important: kernel security and bug fix update
Synopsis Important: kernel security and bug fix update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for kernel is now available for Red Hat Enterprise Linux 90 Extended Update SupportRed Hat Product Securit ...
Red Hat: Important: kernel-rt security and bug fix update
Synopsis Important: kernel-rt security and bug fix update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for kernel-rt is now available for Red Hat Enterprise Linux 90 Extended Update SupportRed Hat Product S ...
Red Hat: Moderate: kernel security, bug fix, and enhancement update
Synopsis Moderate: kernel security, bug fix, and enhancement update Type/Severity Security Advisory: Moderate Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for kernel is now available for Red Hat Enterprise Linux 9Red Hat Product Security has rated th ...
Red Hat: Important: OpenShift Container Platform 4.12.47 security update
Synopsis Important: OpenShift Container Platform 41247 security update Type/Severity Security Advisory: Important Topic Red Hat OpenShift Container Platform release 41247 is now available with updates to packages and images that fix several bugs and add enhancementsThis release includes a security update for Red Hat OpenShift Container P ...
Red Hat: Moderate: Logging Subsystem 5.5.5 - Red Hat OpenShift security update
Synopsis Moderate: Logging Subsystem 555 - Red Hat OpenShift security update Type/Severity Security Advisory: Moderate Topic Logging Subsystem 555 - Red Hat OpenShiftRed Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severi ...
Red Hat: Important: Red Hat Advanced Cluster Management 2.6.3 security update
Synopsis Important: Red Hat Advanced Cluster Management 263 security update Type/Severity Security Advisory: Important Topic Red Hat Advanced Cluster Management for Kubernetes 263 GeneralAvailability release images, which provide security updates, fix bugs, and update container imagesRed Hat Product Security has rated this update as havi ...
Red Hat: Moderate: kernel-rt security and bug fix update
Synopsis Moderate: kernel-rt security and bug fix update Type/Severity Security Advisory: Moderate Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for kernel-rt is now available for Red Hat Enterprise Linux 9Red Hat Product Security has rated this updat ...
Red Hat: Moderate: kernel-rt security and bug fix update
Synopsis Moderate: kernel-rt security and bug fix update Type/Severity Security Advisory: Moderate Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for kernel-rt is now available for Red Hat Enterprise Linux 8Red Hat Product Security has rated this updat ...
Red Hat: Moderate: Openshift Logging 5.3.14 bug fix release and security update
Synopsis Moderate: Openshift Logging 5314 bug fix release and security update Type/Severity Security Advisory: Moderate Topic Openshift Logging Bug Fix Release (5314)Red Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severi ...
Amazon Linux AMI: ALAS-2022-1577
A flaw was found in the Linux kernel in linux/net/netfilter/nf_tables_apic of the netfilter subsystem This flaw allows a local user to cause an out-of-bounds write issue (CVE-2022-1015) A flaw was found in the Linux kernel in net/netfilter/nf_tables_corec:nft_do_chain, which can cause a use-after-free This issue needs to handle return with pro ...
Ubuntu Security Notice: USN-5415-1: Linux kernel vulnerabilities
Several security issues were fixed in the Linux kernel ...
Ubuntu Security Notice: USN-5383-1: Linux kernel vulnerabilities
Several security issues were fixed in the Linux kernel ...
Ubuntu Security Notice: USN-5381-1: Linux kernel (OEM) vulnerabilities
Several security issues were fixed in the Linux kernel ...
Ubuntu Security Notice: USN-5466-1: Linux kernel vulnerabilities
Several security issues were fixed in the Linux kernel ...
Ubuntu Security Notice: USN-5390-1: Linux kernel vulnerabilities
Several security issues were fixed in the Linux kernel ...
Ubuntu Security Notice: USN-5390-2: Linux kernel (Raspberry Pi) vulnerabilities
Several security issues were fixed in the Linux kernel ...
Red Hat:
A flaw was found in the Linux kernel in net/netfilter/nf_tables_corec:nft_do_chain, which can cause a use-after-free This issue needs to handle 'return' with proper preconditions, as it can lead to a kernel information leak problem caused by a local, unprivileged attacker ...
Arch Linux Issues:
CVE-2022-1016 pertains to uninitialized stack data in the nft_do_chain routine CVE-2022-1016 is exploitable starting from commit 96518518cc41 (original merge of nf_tables), v313-rc1, and has been fixed in commit 4c905f6740a3 ("netfilter: nf_tables: initialize registers in nft_do_chain()") ...
Amazon Linux 2: ALAS2KERNEL-5.10-2022-012
A flaw was found in the Linux kernel in linux/net/netfilter/nf_tables_apic of the netfilter subsystem This flaw allows a local user to cause an out-of-bounds write issue (CVE-2022-1015) A flaw was found in the Linux kernel in net/netfilter/nf_tables_corec:nft_do_chain, which can cause a use-after-free This issue needs to handle return with pro ...
Amazon Linux 2: ALAS2KERNEL-5.4-2022-024
A flaw was found in the Linux kernel in linux/net/netfilter/nf_tables_apic of the netfilter subsystem This flaw allows a local user to cause an out-of-bounds write issue (CVE-2022-1015) A flaw was found in the Linux kernel in net/netfilter/nf_tables_corec:nft_do_chain, which can cause a use-after-free This issue needs to handle return with pro ...
Amazon Linux 2: ALAS2-2022-1768
A flaw was found in the Linux kernel in linux/net/netfilter/nf_tables_apic of the netfilter subsystem This flaw allows a local user to cause an out-of-bounds write issue (CVE-2022-1015) A flaw was found in the Linux kernel in net/netfilter/nf_tables_corec:nft_do_chain, which can cause a use-after-free This issue needs to handle return with pro ...
Amazon Linux 2: ALAS2KERNEL-5.15-2023-023
An issue was discovered in fs/io_uringc in the Linux kernel through 5118 It allows attackers to cause a denial of service (deadlock) because exit may be waiting to park a SQPOLL thread, but concurrently that SQPOLL thread is waiting for a signal to start, aka CID-3ebba796fa25 (CVE-2021-28951) A flaw was found in unrestricted eBPF usage by the ...
Amazon Linux 2: ALAS2KERNEL-5.15-2022-001
A flaw was found in unrestricted eBPF usage by the BPF_BTF_LOAD, leading to a possible out-of-bounds memory write in the Linux kernel's BPF subsystem due to the way a user loads BTF This flaw allows a local user to crash or escalate their privileges on the system (CVE-2022-0500) A flaw was found in the Linux kernel in linux/net/netfilter/nf_table ...
Amazon Linux 2022: ALAS2022-2022-042
A flaw was found in the Linux kernel in linux/net/netfilter/nf_tables_apic of the netfilter subsystem This flaw allows a local user to cause an out-of-bounds write issue (CVE-2022-1015) A flaw was found in the Linux kernel in net/netfilter/nf_tables_corec:nft_do_chain, which can cause a use-after-free This issue needs to handle return with pro ...
Amazon Linux 2022: ALAS2022-2022-083
A flaw was found in unrestricted eBPF usage by the BPF_BTF_LOAD, leading to a possible out-of-bounds memory write in the Linux kernel's BPF subsystem due to the way a user loads BTF This flaw allows a local user to crash or escalate their privileges on the system (CVE-2022-0500) A flaw was found in the Linux kernel in linux/net/netfilter/nf_table ...

Github Repositories

https://github.com/yaobinwen/robin_on_rails

Robin on Rails: my notes about technology and some other knowledge.

Robin on Rails: Track My Study of Various Software/Hardware Technologies (Last updated on 2022-11-20) 1 Overview Is it possible to keep track of the latest development of every technology in the software development industry? No Impossible nowadays A lot of people will say: Don't try! Being a programmer requires continuous learning of various technologies However, as t

https://github.com/zanezhub/CVE-2022-1015-1016

Traducción al español de los CVE-2022-1015 y 1016 descubiertos y documentados por David.

CVE-2022-1015 & CVE-2022-1026 Este READMEmd es una traducción del blog de David David encontró los CVE's 1015 y 1016 en el kernel de Linux Puedes visitar su página web para leer el documento original Aquí te dejo sus redes sociales: Twitter Github Un análisis de las dos nuevas vulnerabilidades de Linux en nf_tables Publicado

References

CWE-909https://seclists.org/oss-sec/2022/q1/205https://bugzilla.redhat.com/show_bug.cgi?id=2066614https://access.redhat.com/security/cve/CVE-2022-1016http://blog.dbouman.nl/2022/04/02/How-The-Tables-Have-Turned-CVE-2022-1015-1016/https://nvd.nist.govhttps://github.com/yaobinwen/robin_on_railshttps://www.debian.org/security/2022/dsa-5173https://ubuntu.com/security/notices/USN-5415-1https://ubuntu.com/security/notices/USN-5381-1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-21111CVE-2024-32884IDORCVE-2023-1000CVE-2024-33260CVE-2024-3682reflected XSSrace conditionCVE-2024-3400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook