CVE-2022-1055

moderate-risk

Published 2022-03-29

A use-after-free exists in the Linux Kernel in tc_new_tfilter that could allow a local attacker to gain privilege escalation. The exploit requires unprivileged user namespaces. We recommend upgrading past commit 04c2a47ffb13c29778e2a14e414ad4cb5a5db4b5

Do I need to act?

0.02% chance of exploitation

EPSS score — low exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 7.8/10 High

LOCAL / LOW complexity

Affected Products (19)

Linux Kernel

Enterprise Linux

Fedora

Ubuntu Linux

H300S Firmware

H500S Firmware

H700S Firmware

H300E Firmware

H500E Firmware

H700E Firmware

H410S Firmware

H410C Firmware

Affected Vendors

Redhat Linux Canonical Fedoraproject Netapp

References (10)

Third Party Advisory http://packetstormsecurity.com/files/167386/Kernel-Live-Patch-Security-Notice-LS...

Patch https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=04...

Exploit https://kernel.dance/#04c2a47ffb13c29778e2a14e414ad4cb5a5db4b5

Third Party Advisory https://security.netapp.com/advisory/ntap-20220506-0007/

Exploit https://syzkaller.appspot.com/bug?id=2212474c958978ab86525fe6832ac8102c309ffc

Third Party Advisory http://packetstormsecurity.com/files/167386/Kernel-Live-Patch-Security-Notice-LS...

Patch https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=04...

Exploit https://kernel.dance/#04c2a47ffb13c29778e2a14e414ad4cb5a5db4b5

Third Party Advisory https://security.netapp.com/advisory/ntap-20220506-0007/

Exploit https://syzkaller.appspot.com/bug?id=2212474c958978ab86525fe6832ac8102c309ffc

/ 100

moderate-risk

Severity 24/34 · High

Exploitability 0/34 · Minimal

Exposure 19/34 · Moderate