CVE-2022-0185
Description
A heap-based buffer overflow flaw was found in the way the legacy_parse_param function in the Filesystem Context functionality of the Linux kernel verified the supplied parameters length. An unprivileged (in case of unprivileged user namespaces enabled, otherwise needs namespaced CAP_SYS_ADMIN privilege) local user able to open a filesystem that does not support the Filesystem Context API (and thus fallbacks to legacy handling) could use this flaw to escalate their privileges on the system.
Risk Information
Base Score
8.4
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
1.347
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Linux kernel (USN-5240-1) linux-image-aws_5.4.0.1063.45_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-aws_5.11.0.1027.26_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-aws_5.13.0.1011.12_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-aws_5.11.0.1027.30~20.04.25_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-gcp_5.4.0.1062.47_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-gcp_5.11.0.1028.26_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-gcp_5.13.0.1012.11_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-gcp_5.11.0.1028.32~20.04.26_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-gke_5.4.0.1059.69_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-gke_5.11.0.1028.26_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-gke_5.13.0.1012.11_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-ibm_5.4.0.1012.13_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-kvm_5.4.0.1053.52_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-kvm_5.11.0.1024.24_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-kvm_5.13.0.1010.10_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-oem_5.4.0.96.100_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-oem_5.4.0.96.109~18.04.84_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-azure_5.4.0.1067.46_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-azure_5.11.0.1027.26_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-azure_5.13.0.1012.12_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-azure_5.11.0.1027.30~20.04.25_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-gkeop_5.4.0.1031.34_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-oracle_5.11.0.1027.26_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-oracle_5.13.0.1015.15_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-oracle_5.4.0.1061.65~18.04.40_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-oracle_5.11.0.1027.30~20.04.19_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-generic_5.11.0.49.48_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-generic_5.13.0.27.37_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-generic_5.4.0.96.100_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-gke-5.4_5.4.0.1059.69_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-gke-5.4_5.4.0.1059.62~18.04.23_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-virtual_5.11.0.49.48_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-virtual_5.13.0.27.37_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-virtual_5.4.0.96.100_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-oem-osp1_5.4.0.96.100_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-oem-osp1_5.4.0.96.109~18.04.84_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-gkeop-5.4_5.4.0.1031.34_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-gkeop-5.4_5.4.0.1031.32~18.04.31_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-oem-20.04_5.11.0.49.48_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-oem-20.04_5.13.0.27.37_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-oem-20.04_5.10.0.1057.57_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-lowlatency_5.11.0.49.48_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-lowlatency_5.13.0.27.37_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-lowlatency_5.4.0.96.100_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-oem-20.04b_5.10.0.1057.57_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-oem-20.04c_5.13.0.1028.30_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-oem-20.04d_5.14.0.1020.17_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-aws-lts-20.04_5.4.0.1063.65_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-gcp-lts-20.04_5.4.0.1062.72_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-ibm-lts-20.04_5.4.0.1012.13_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-5.4.0-1012-ibm_5.4.0-1012.13_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-5.4.0-1053-kvm_5.4.0-1053.55_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-5.4.0-1059-gke_5.4.0-1059.62_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-5.4.0-1059-gke_5.4.0-1059.62~18.04.1_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-5.4.0-1062-gcp_5.4.0-1062.66_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-5.4.0-1062-gcp_5.4.0-1062.66~18.04.1_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-5.10.0-1057-oem_5.10.0-1057.61_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-5.11.0-1024-kvm_5.11.0-1024.27_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-5.11.0-1027-aws_5.11.0-1027.30_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-5.11.0-1027-aws_5.11.0-1027.30~20.04.1_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-5.11.0-1028-gcp_5.11.0-1028.32_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-5.11.0-1028-gcp_5.11.0-1028.32~20.04.1_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-5.13.0-1010-kvm_5.13.0-1010.11_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-5.13.0-1011-aws_5.13.0-1011.12_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-5.13.0-1012-gcp_5.13.0-1012.15_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-5.13.0-1028-oem_5.13.0-1028.35_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-5.14.0-1020-oem_5.14.0-1020.22_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-azure-lts-20.04_5.4.0.1067.65_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-5.4.0-1031-gkeop_5.4.0-1031.32_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-5.4.0-1031-gkeop_5.4.0-1031.32~18.04.1_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-5.4.0-1067-azure_5.4.0-1067.70_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-5.4.0-1067-azure_5.4.0-1067.70~18.04.1_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-5.4.0-96-generic_5.4.0-96.109_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-5.4.0-96-generic_5.4.0-96.109~18.04.1_i386.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-5.4.0-96-generic_5.4.0-96.109~18.04.1_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-oracle-lts-20.04_5.4.0.1061.61_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-5.11.0-1027-azure_5.11.0-1027.30_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-5.11.0-1027-azure_5.11.0-1027.30~20.04.1_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-5.11.0-49-generic_5.11.0-49.55_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-5.13.0-1012-azure_5.13.0-1012.14_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-5.13.0-27-generic_5.13.0-27.29_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-5.4.0-1061-oracle_5.4.0-1061.65_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-5.4.0-1061-oracle_5.4.0-1061.65~18.04.1_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-generic-hwe-18.04_5.4.0.96.109~18.04.84_i386.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-generic-hwe-18.04_5.4.0.96.109~18.04.84_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-virtual-hwe-18.04_5.4.0.96.109~18.04.84_i386.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-virtual-hwe-18.04_5.4.0.96.109~18.04.84_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-5.11.0-1027-oracle_5.11.0-1027.30_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-5.11.0-1027-oracle_5.11.0-1027.30~20.04.1_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-5.13.0-1015-oracle_5.13.0-1015.19_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-5.4.0-96-lowlatency_5.4.0-96.109_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-5.4.0-96-lowlatency_5.4.0-96.109~18.04.1_i386.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-5.4.0-96-lowlatency_5.4.0-96.109~18.04.1_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-5.11.0-49-lowlatency_5.11.0-49.55_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-5.13.0-27-lowlatency_5.13.0-27.29_amd64.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-lowlatency-hwe-18.04_5.4.0.96.109~18.04.84_i386.deb | Linux |
| Linux kernel (USN-5240-1) linux-image-lowlatency-hwe-18.04_5.4.0.96.109~18.04.84_amd64.deb | Linux |
| Kernel-uek update (ELSA-2022-9028) kernel-uek-5.4.17-2136.302.7.2.1.el8uek.x86_64.rpm | Linux |
| Kernel-uek-debug update (ELSA-2022-9028) kernel-uek-debug-5.4.17-2136.302.7.2.1.el8uek.x86_64.rpm | Linux |
| Kernel-uek-debug-devel update (ELSA-2022-9028) kernel-uek-debug-devel-5.4.17-2136.302.7.2.1.el8uek.x86_64.rpm | Linux |
| Kernel-uek-devel update (ELSA-2022-9028) kernel-uek-devel-5.4.17-2136.302.7.2.1.el8uek.x86_64.rpm | Linux |
| Kernel-uek-doc update (ELSA-2022-9028) kernel-uek-doc-5.4.17-2136.302.7.2.1.el8uek.noarch.rpm | Linux |
| Bpftool update (ELSA-2022-0188) bpftool-4.18.0-348.12.2.el8_5.x86_64.rpm | Linux |
| Kernel update (ELSA-2022-0188) kernel-4.18.0-348.12.2.el8_5.x86_64.rpm | Linux |
| Kernel-abi-stablelists update (ELSA-2022-0188) kernel-abi-stablelists-4.18.0-348.12.2.el8_5.noarch.rpm | Linux |
| Kernel-core update (ELSA-2022-0188) kernel-core-4.18.0-348.12.2.el8_5.x86_64.rpm | Linux |
| Kernel-cross-headers update (ELSA-2022-0188) kernel-cross-headers-4.18.0-348.12.2.el8_5.x86_64.rpm | Linux |
| Kernel-debug update (ELSA-2022-0188) kernel-debug-4.18.0-348.12.2.el8_5.x86_64.rpm | Linux |
| Kernel-debug-core update (ELSA-2022-0188) kernel-debug-core-4.18.0-348.12.2.el8_5.x86_64.rpm | Linux |
| Kernel-debug-devel update (ELSA-2022-0188) kernel-debug-devel-4.18.0-348.12.2.el8_5.x86_64.rpm | Linux |
| Kernel-debug-modules update (ELSA-2022-0188) kernel-debug-modules-4.18.0-348.12.2.el8_5.x86_64.rpm | Linux |
| Kernel-debug-modules-extra update (ELSA-2022-0188) kernel-debug-modules-extra-4.18.0-348.12.2.el8_5.x86_64.rpm | Linux |
| Kernel-devel update (ELSA-2022-0188) kernel-devel-4.18.0-348.12.2.el8_5.x86_64.rpm | Linux |
| Kernel-doc update (ELSA-2022-0188) kernel-doc-4.18.0-348.12.2.el8_5.noarch.rpm | Linux |
| Kernel-headers update (ELSA-2022-0188) kernel-headers-4.18.0-348.12.2.el8_5.x86_64.rpm | Linux |
| Kernel-modules update (ELSA-2022-0188) kernel-modules-4.18.0-348.12.2.el8_5.x86_64.rpm | Linux |
| Kernel-modules-extra update (ELSA-2022-0188) kernel-modules-extra-4.18.0-348.12.2.el8_5.x86_64.rpm | Linux |
| Kernel-tools update (ELSA-2022-0188) kernel-tools-4.18.0-348.12.2.el8_5.x86_64.rpm | Linux |
| Kernel-tools-libs update (ELSA-2022-0188) kernel-tools-libs-4.18.0-348.12.2.el8_5.x86_64.rpm | Linux |
| Kernel-tools-libs-devel update (ELSA-2022-0188) kernel-tools-libs-devel-4.18.0-348.12.2.el8_5.x86_64.rpm | Linux |
| Perf update (ELSA-2022-0188) perf-4.18.0-348.12.2.el8_5.x86_64.rpm | Linux |
| Python3-perf update (ELSA-2022-0188) python3-perf-4.18.0-348.12.2.el8_5.x86_64.rpm | Linux |
| (RHSA-2022:0232) kpatch-patch security update kpatch-patch-4_18_0-348-1-2.el8.x86_64.rpm | Linux |
| (RHSA-2022:0232) kpatch-patch security update kpatch-patch-4_18_0-348-debugsource-1-2.el8.x86_64.rpm | Linux |
| (RHSA-2022:0232) kpatch-patch security update kpatch-patch-4_18_0-348_2_1-1-1.el8_5.x86_64.rpm | Linux |
| (RHSA-2022:0232) kpatch-patch security update kpatch-patch-4_18_0-348_2_1-debugsource-1-1.el8_5.x86_64.rpm | Linux |
| (RHSA-2022:0232) kpatch-patch security update kpatch-patch-4_18_0-348_7_1-1-1.el8_5.x86_64.rpm | Linux |
| (RHSA-2022:0232) kpatch-patch security update kpatch-patch-4_18_0-348_7_1-debugsource-1-1.el8_5.x86_64.rpm | Linux |
| Kernel-uek update (ELSA-2022-9147) kernel-uek-5.4.17-2136.304.4.1.el8uek.x86_64.rpm | Linux |
| Kernel-uek-debug update (ELSA-2022-9147) kernel-uek-debug-5.4.17-2136.304.4.1.el8uek.x86_64.rpm | Linux |
| Kernel-uek-debug-devel update (ELSA-2022-9147) kernel-uek-debug-devel-5.4.17-2136.304.4.1.el8uek.x86_64.rpm | Linux |
| Kernel-uek-devel update (ELSA-2022-9147) kernel-uek-devel-5.4.17-2136.304.4.1.el8uek.x86_64.rpm | Linux |
| Kernel-uek-doc update (ELSA-2022-9147) kernel-uek-doc-5.4.17-2136.304.4.1.el8uek.noarch.rpm | Linux |
| Kernel-uek-container update (ELSA-2022-9148) kernel-uek-container-5.4.17-2136.304.4.1.el8.x86_64.rpm | Linux |
| Kernel-uek-container-debug update (ELSA-2022-9148) kernel-uek-container-debug-5.4.17-2136.304.4.1.el8.x86_64.rpm | Linux |
| Bpftool update (ELSA-2022-0825) bpftool-4.18.0-348.20.1.el8_5.x86_64.rpm | Linux |
| Kernel update (ELSA-2022-0825) kernel-4.18.0-348.20.1.el8_5.x86_64.rpm | Linux |
| Kernel-abi-stablelists update (ELSA-2022-0825) kernel-abi-stablelists-4.18.0-348.20.1.el8_5.noarch.rpm | Linux |
| Kernel-core update (ELSA-2022-0825) kernel-core-4.18.0-348.20.1.el8_5.x86_64.rpm | Linux |
| Kernel-cross-headers update (ELSA-2022-0825) kernel-cross-headers-4.18.0-348.20.1.el8_5.x86_64.rpm | Linux |
| Kernel-debug update (ELSA-2022-0825) kernel-debug-4.18.0-348.20.1.el8_5.x86_64.rpm | Linux |
| Kernel-debug-core update (ELSA-2022-0825) kernel-debug-core-4.18.0-348.20.1.el8_5.x86_64.rpm | Linux |
| Kernel-debug-devel update (ELSA-2022-0825) kernel-debug-devel-4.18.0-348.20.1.el8_5.x86_64.rpm | Linux |
| Kernel-debug-modules update (ELSA-2022-0825) kernel-debug-modules-4.18.0-348.20.1.el8_5.x86_64.rpm | Linux |
| Kernel-debug-modules-extra update (ELSA-2022-0825) kernel-debug-modules-extra-4.18.0-348.20.1.el8_5.x86_64.rpm | Linux |
| Kernel-devel update (ELSA-2022-0825) kernel-devel-4.18.0-348.20.1.el8_5.x86_64.rpm | Linux |
| Kernel-doc update (ELSA-2022-0825) kernel-doc-4.18.0-348.20.1.el8_5.noarch.rpm | Linux |
| Kernel-headers update (ELSA-2022-0825) kernel-headers-4.18.0-348.20.1.el8_5.x86_64.rpm | Linux |
| Kernel-modules update (ELSA-2022-0825) kernel-modules-4.18.0-348.20.1.el8_5.x86_64.rpm | Linux |
| Kernel-modules-extra update (ELSA-2022-0825) kernel-modules-extra-4.18.0-348.20.1.el8_5.x86_64.rpm | Linux |
| Kernel-tools update (ELSA-2022-0825) kernel-tools-4.18.0-348.20.1.el8_5.x86_64.rpm | Linux |
| Kernel-tools-libs update (ELSA-2022-0825) kernel-tools-libs-4.18.0-348.20.1.el8_5.x86_64.rpm | Linux |
| Kernel-tools-libs-devel update (ELSA-2022-0825) kernel-tools-libs-devel-4.18.0-348.20.1.el8_5.x86_64.rpm | Linux |
| Perf update (ELSA-2022-0825) perf-4.18.0-348.20.1.el8_5.x86_64.rpm | Linux |
| Python3-perf update (ELSA-2022-0825) python3-perf-4.18.0-348.20.1.el8_5.x86_64.rpm | Linux |
| Linux kernel for Intel IOTG (USN-5362-1) linux-image-intel_5.13.0.1010.11_amd64.deb | Linux |
| Linux kernel for Intel IOTG (USN-5362-1) linux-image-5.13.0-1010-intel_5.13.0-1010.10_amd64.deb | Linux |
| kernel Security Update (ALAS-2023-070) kernel-livepatch-6.1.10-15.42-1.0-0.amzn2023.x86_64.rpm | Linux |
| kernel Security Update (ALAS2023-2023-070) bpftool-6.1.10-15.42.amzn2023.x86_64.rpm | Linux |
| kernel Security Update (ALAS2023-2023-070) python3-perf-6.1.10-15.42.amzn2023.x86_64.rpm | Linux |
| kernel Security Update (ALAS2023-2023-070) perf-6.1.10-15.42.amzn2023.x86_64.rpm | Linux |
| kernel Security Update (ALAS2023-2023-070) kernel-6.1.10-15.42.amzn2023.x86_64.rpm | Linux |
| kernel Security Update (ALAS2023-2023-070) kernel-devel-6.1.10-15.42.amzn2023.x86_64.rpm | Linux |
| kernel Security Update (ALAS2023-2023-070) kernel-headers-6.1.10-15.42.amzn2023.x86_64.rpm | Linux |
| kernel Security Update (ALAS2023-2023-070) kernel-libbpf-6.1.10-15.42.amzn2023.x86_64.rpm | Linux |
| kernel Security Update (ALAS2023-2023-070) kernel-libbpf-devel-6.1.10-15.42.amzn2023.x86_64.rpm | Linux |
| kernel Security Update (ALAS2023-2023-070) kernel-libbpf-static-6.1.10-15.42.amzn2023.x86_64.rpm | Linux |
| kernel Security Update (ALAS2023-2023-070) kernel-livepatch-6.1.10-15.42-1.0-0.amzn2023.x86_64.rpm | Linux |
| kernel Security Update (ALAS2023-2023-070) kernel-tools-6.1.10-15.42.amzn2023.x86_64.rpm | Linux |
| kernel Security Update (ALAS2023-2023-070) kernel-tools-devel-6.1.10-15.42.amzn2023.x86_64.rpm | Linux |
| Integer Underflow (Wrap or Wraparound) Vulnerability (CVE-2022-0185) | NCM |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234