Home

CVE-2022-1116

Description

Integer Overflow or Wraparound vulnerability in io_uring of Linux Kernel allows local attacker to cause memory corruption and escalate privileges to root. This issue affects: Linux Kernel versions prior to 5.4.189; version 5.4.24 and later versions.

Risk Information

Base Score
7.8
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.168

Associated Vulnerability

VulnerabilityOS Platform
Linux kernel for NVIDIA BlueField platforms (USN-5442-2) linux-image-gcp_5.4.0.1093.71_amd64.debLinux
Linux kernel for NVIDIA BlueField platforms (USN-5442-2) linux-image-ibm_5.4.0.1037.50_amd64.debLinux
Linux kernel for NVIDIA BlueField platforms (USN-5442-2) linux-image-gkeop_5.4.0.1057.57_amd64.debLinux
Linux kernel for NVIDIA BlueField platforms (USN-5442-2) linux-image-oracle_5.4.0.1087.96~18.04.63_amd64.debLinux
Linux kernel for NVIDIA BlueField platforms (USN-5442-2) linux-image-gkeop-5.4_5.4.0.1057.57_amd64.debLinux
Linux kernel for NVIDIA BlueField platforms (USN-5442-2) linux-image-gkeop-5.4_5.4.0.1051.54~18.04.48_amd64.debLinux
Linux kernel for NVIDIA BlueField platforms (USN-5442-2) linux-image-5.4.0-1023-ibm_5.4.0-1023.25~18.04.1_amd64.debLinux
Linux kernel for NVIDIA BlueField platforms (USN-5442-2) linux-image-5.4.0-1075-gcp_5.4.0-1075.80~18.04.1_amd64.debLinux
Linux kernel for NVIDIA BlueField platforms (USN-5442-2) linux-image-5.4.0-1043-gkeop_5.4.0-1043.44_amd64.debLinux
Linux kernel for NVIDIA BlueField platforms (USN-5442-2) linux-image-5.4.0-1043-gkeop_5.4.0-1043.44~18.04.1_amd64.debLinux
Linux kernel for NVIDIA BlueField platforms (USN-5442-2) linux-image-oracle-lts-20.04_5.4.0.1087.83_amd64.debLinux
Linux kernel for NVIDIA BlueField platforms (USN-5442-2) linux-image-5.4.0-1073-oracle_5.4.0-1073.79_amd64.debLinux
Linux kernel for NVIDIA BlueField platforms (USN-5442-2) linux-image-5.4.0-1073-oracle_5.4.0-1073.79~18.04.1_amd64.debLinux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234