Home

CVE-2022-1462

Description

An out-of-bounds read flaw was found in the Linux kernels TeleTYpe subsystem. The issue occurs in how a user triggers a race condition using ioctls TIOCSPTLCK and TIOCGPTPEER and TIOCSTI and TCXONC with leakage of memory in the flush_to_ldisc function. This flaw allows a local user to crash the system or read unauthorized random data from memory.

Risk Information

Base Score
6.3
MODERATE
Vector
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H
EPSS Score
Exploitation Probability
0.041

Associated Vulnerability

VulnerabilityOS Platform
SUSE-SU-2022:2720-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-azure-4.12.14-16.106.1.x86_64.rpmLinux
SUSE-SU-2022:2720-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-azure-base-4.12.14-16.106.1.x86_64.rpmLinux
SUSE-SU-2022:2720-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-azure-base-debuginfo-4.12.14-16.106.1.x86_64.rpmLinux
SUSE-SU-2022:2720-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-azure-debuginfo-4.12.14-16.106.1.x86_64.rpmLinux
SUSE-SU-2022:2720-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-azure-debugsource-4.12.14-16.106.1.x86_64.rpmLinux
SUSE-SU-2022:2720-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-azure-devel-4.12.14-16.106.1.x86_64.rpmLinux
SUSE-SU-2022:2720-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-devel-azure-4.12.14-16.106.1.noarch.rpmLinux
SUSE-SU-2022:2720-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-source-azure-4.12.14-16.106.1.noarch.rpmLinux
SUSE-SU-2022:2720-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-syms-azure-4.12.14-16.106.1.x86_64.rpmLinux
(RHSA-2023:2458) kernel security, bug fix, and enhancement update bpftool-7.0.0-284.11.1.el9_2.x86_64.rpmLinux
(RHSA-2023:2458) kernel security, bug fix, and enhancement update kernel-5.14.0-284.11.1.el9_2.x86_64.rpmLinux
(RHSA-2023:2458) kernel security, bug fix, and enhancement update kernel-abi-stablelists-5.14.0-284.11.1.el9_2.noarch.rpmLinux
(RHSA-2023:2458) kernel security, bug fix, and enhancement update kernel-core-5.14.0-284.11.1.el9_2.x86_64.rpmLinux
(RHSA-2023:2458) kernel security, bug fix, and enhancement update kernel-debug-5.14.0-284.11.1.el9_2.x86_64.rpmLinux
(RHSA-2023:2458) kernel security, bug fix, and enhancement update kernel-debug-core-5.14.0-284.11.1.el9_2.x86_64.rpmLinux
(RHSA-2023:2458) kernel security, bug fix, and enhancement update kernel-debug-devel-5.14.0-284.11.1.el9_2.x86_64.rpmLinux
(RHSA-2023:2458) kernel security, bug fix, and enhancement update kernel-debug-devel-matched-5.14.0-284.11.1.el9_2.x86_64.rpmLinux
(RHSA-2023:2458) kernel security, bug fix, and enhancement update kernel-debug-modules-5.14.0-284.11.1.el9_2.x86_64.rpmLinux
(RHSA-2023:2458) kernel security, bug fix, and enhancement update kernel-debug-modules-core-5.14.0-284.11.1.el9_2.x86_64.rpmLinux
(RHSA-2023:2458) kernel security, bug fix, and enhancement update kernel-debug-modules-extra-5.14.0-284.11.1.el9_2.x86_64.rpmLinux
(RHSA-2023:2458) kernel security, bug fix, and enhancement update kernel-debug-uki-virt-5.14.0-284.11.1.el9_2.x86_64.rpmLinux
(RHSA-2023:2458) kernel security, bug fix, and enhancement update kernel-devel-5.14.0-284.11.1.el9_2.x86_64.rpmLinux
(RHSA-2023:2458) kernel security, bug fix, and enhancement update kernel-devel-matched-5.14.0-284.11.1.el9_2.x86_64.rpmLinux
(RHSA-2023:2458) kernel security, bug fix, and enhancement update kernel-doc-5.14.0-284.11.1.el9_2.noarch.rpmLinux
(RHSA-2023:2458) kernel security, bug fix, and enhancement update kernel-headers-5.14.0-284.11.1.el9_2.x86_64.rpmLinux
(RHSA-2023:2458) kernel security, bug fix, and enhancement update kernel-modules-5.14.0-284.11.1.el9_2.x86_64.rpmLinux
(RHSA-2023:2458) kernel security, bug fix, and enhancement update kernel-modules-core-5.14.0-284.11.1.el9_2.x86_64.rpmLinux
(RHSA-2023:2458) kernel security, bug fix, and enhancement update kernel-modules-extra-5.14.0-284.11.1.el9_2.x86_64.rpmLinux
(RHSA-2023:2458) kernel security, bug fix, and enhancement update kernel-tools-5.14.0-284.11.1.el9_2.x86_64.rpmLinux
(RHSA-2023:2458) kernel security, bug fix, and enhancement update kernel-tools-libs-5.14.0-284.11.1.el9_2.x86_64.rpmLinux
(RHSA-2023:2458) kernel security, bug fix, and enhancement update kernel-uki-virt-5.14.0-284.11.1.el9_2.x86_64.rpmLinux
(RHSA-2023:2458) kernel security, bug fix, and enhancement update perf-5.14.0-284.11.1.el9_2.x86_64.rpmLinux
(RHSA-2023:2458) kernel security, bug fix, and enhancement update python3-perf-5.14.0-284.11.1.el9_2.x86_64.rpmLinux
(RHSA-2023:2458) kernel security, bug fix, and enhancement update rtla-5.14.0-284.11.1.el9_2.x86_64.rpmLinux
(RHSA-2023:2951) kernel security, bug fix, and enhancement update bpftool-4.18.0-477.10.1.el8_8.x86_64.rpmLinux
(RHSA-2023:2951) kernel security, bug fix, and enhancement update kernel-4.18.0-477.10.1.el8_8.x86_64.rpmLinux
(RHSA-2023:2951) kernel security, bug fix, and enhancement update kernel-abi-stablelists-4.18.0-477.10.1.el8_8.noarch.rpmLinux
(RHSA-2023:2951) kernel security, bug fix, and enhancement update kernel-core-4.18.0-477.10.1.el8_8.x86_64.rpmLinux
(RHSA-2023:2951) kernel security, bug fix, and enhancement update kernel-cross-headers-4.18.0-477.10.1.el8_8.x86_64.rpmLinux
(RHSA-2023:2951) kernel security, bug fix, and enhancement update kernel-debug-4.18.0-477.10.1.el8_8.x86_64.rpmLinux
(RHSA-2023:2951) kernel security, bug fix, and enhancement update kernel-debug-core-4.18.0-477.10.1.el8_8.x86_64.rpmLinux
(RHSA-2023:2951) kernel security, bug fix, and enhancement update kernel-debug-devel-4.18.0-477.10.1.el8_8.x86_64.rpmLinux
(RHSA-2023:2951) kernel security, bug fix, and enhancement update kernel-debug-modules-4.18.0-477.10.1.el8_8.x86_64.rpmLinux
(RHSA-2023:2951) kernel security, bug fix, and enhancement update kernel-debug-modules-extra-4.18.0-477.10.1.el8_8.x86_64.rpmLinux
(RHSA-2023:2951) kernel security, bug fix, and enhancement update kernel-devel-4.18.0-477.10.1.el8_8.x86_64.rpmLinux
(RHSA-2023:2951) kernel security, bug fix, and enhancement update kernel-doc-4.18.0-477.10.1.el8_8.noarch.rpmLinux
(RHSA-2023:2951) kernel security, bug fix, and enhancement update kernel-headers-4.18.0-477.10.1.el8_8.x86_64.rpmLinux
(RHSA-2023:2951) kernel security, bug fix, and enhancement update kernel-modules-4.18.0-477.10.1.el8_8.x86_64.rpmLinux
(RHSA-2023:2951) kernel security, bug fix, and enhancement update kernel-modules-extra-4.18.0-477.10.1.el8_8.x86_64.rpmLinux
(RHSA-2023:2951) kernel security, bug fix, and enhancement update kernel-tools-4.18.0-477.10.1.el8_8.x86_64.rpmLinux
(RHSA-2023:2951) kernel security, bug fix, and enhancement update kernel-tools-libs-4.18.0-477.10.1.el8_8.x86_64.rpmLinux
(RHSA-2023:2951) kernel security, bug fix, and enhancement update perf-4.18.0-477.10.1.el8_8.x86_64.rpmLinux
(RHSA-2023:2951) kernel security, bug fix, and enhancement update python3-perf-4.18.0-477.10.1.el8_8.x86_64.rpmLinux
kernel Security Update (ALAS-2022-1852) kernel-livepatch-4.14.294-220.533-1.0-0.amzn2.x86_64.rpmLinux
kernel Security Update (ALAS-2023-070) kernel-livepatch-6.1.10-15.42-1.0-0.amzn2023.x86_64.rpmLinux
kernel Security Update (ALAS2-2022-1852) kernel-livepatch-4.14.294-220.533-1.0-0.amzn2.x86_64.rpmLinux
kernel Security Update (ALAS2023-2023-070) bpftool-6.1.10-15.42.amzn2023.x86_64.rpmLinux
kernel Security Update (ALAS2023-2023-070) python3-perf-6.1.10-15.42.amzn2023.x86_64.rpmLinux
kernel Security Update (ALAS2023-2023-070) perf-6.1.10-15.42.amzn2023.x86_64.rpmLinux
kernel Security Update (ALAS2023-2023-070) kernel-6.1.10-15.42.amzn2023.x86_64.rpmLinux
kernel Security Update (ALAS2023-2023-070) kernel-devel-6.1.10-15.42.amzn2023.x86_64.rpmLinux
kernel Security Update (ALAS2023-2023-070) kernel-headers-6.1.10-15.42.amzn2023.x86_64.rpmLinux
kernel Security Update (ALAS2023-2023-070) kernel-libbpf-6.1.10-15.42.amzn2023.x86_64.rpmLinux
kernel Security Update (ALAS2023-2023-070) kernel-libbpf-devel-6.1.10-15.42.amzn2023.x86_64.rpmLinux
kernel Security Update (ALAS2023-2023-070) kernel-libbpf-static-6.1.10-15.42.amzn2023.x86_64.rpmLinux
kernel Security Update (ALAS2023-2023-070) kernel-livepatch-6.1.10-15.42-1.0-0.amzn2023.x86_64.rpmLinux
kernel Security Update (ALAS2023-2023-070) kernel-tools-6.1.10-15.42.amzn2023.x86_64.rpmLinux
kernel Security Update (ALAS2023-2023-070) kernel-tools-devel-6.1.10-15.42.amzn2023.x86_64.rpmLinux
CVE-2022-1462NCM

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234