CVE-2022-25636
Description
net/netfilter/nf_dup_netdev.c in the Linux kernel 5.4 through 5.6.10 allows local users to gain privileges because of a heap out-of-bounds write. This is related to nf_tables_offload.
Risk Information
Base Score
7.8
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.396
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Kernel-uek update (ELSA-2022-9181) kernel-uek-5.4.17-2136.304.4.2.el8uek.x86_64.rpm | Linux |
| Kernel-uek-debug update (ELSA-2022-9181) kernel-uek-debug-5.4.17-2136.304.4.2.el8uek.x86_64.rpm | Linux |
| Kernel-uek-debug-devel update (ELSA-2022-9181) kernel-uek-debug-devel-5.4.17-2136.304.4.2.el8uek.x86_64.rpm | Linux |
| Kernel-uek-devel update (ELSA-2022-9181) kernel-uek-devel-5.4.17-2136.304.4.2.el8uek.x86_64.rpm | Linux |
| Kernel-uek-doc update (ELSA-2022-9181) kernel-uek-doc-5.4.17-2136.304.4.2.el8uek.noarch.rpm | Linux |
| Linux kernel (USN-5317-1) linux-image-aws_5.13.0.1017.18_amd64.deb | Linux |
| Linux kernel (USN-5317-1) linux-image-aws_5.13.0.1017.19~20.04.10_amd64.deb | Linux |
| Linux kernel (USN-5317-1) linux-image-gcp_5.13.0.1019.17_amd64.deb | Linux |
| Linux kernel (USN-5317-1) linux-image-gcp_5.13.0.1019.23~20.04.1_amd64.deb | Linux |
| Linux kernel (USN-5317-1) linux-image-gke_5.13.0.1019.17_amd64.deb | Linux |
| Linux kernel (USN-5317-1) linux-image-kvm_5.13.0.1016.16_amd64.deb | Linux |
| Linux kernel (USN-5317-1) linux-image-azure_5.13.0.1017.17_amd64.deb | Linux |
| Linux kernel (USN-5317-1) linux-image-azure_5.13.0.1017.19~20.04.7_amd64.deb | Linux |
| Linux kernel (USN-5317-1) linux-image-oracle_5.13.0.1021.21_amd64.deb | Linux |
| Linux kernel (USN-5317-1) linux-image-oracle_5.13.0.1021.26~20.04.1_amd64.deb | Linux |
| Linux kernel (USN-5317-1) linux-image-generic_5.13.0.35.44_amd64.deb | Linux |
| Linux kernel (USN-5317-1) linux-image-virtual_5.13.0.35.44_amd64.deb | Linux |
| Linux kernel (USN-5317-1) linux-image-oem-20.04_5.13.0.35.44_amd64.deb | Linux |
| Linux kernel (USN-5317-1) linux-image-oem-20.04_5.14.0.1027.24_amd64.deb | Linux |
| Linux kernel (USN-5317-1) linux-image-lowlatency_5.13.0.35.44_amd64.deb | Linux |
| Linux kernel (USN-5317-1) linux-image-oem-20.04b_5.14.0.1027.24_amd64.deb | Linux |
| Linux kernel (USN-5317-1) linux-image-oem-20.04c_5.14.0.1027.24_amd64.deb | Linux |
| Linux kernel (USN-5317-1) linux-image-oem-20.04d_5.14.0.1027.24_amd64.deb | Linux |
| Linux kernel (USN-5317-1) linux-image-5.13.0-1016-kvm_5.13.0-1016.17_amd64.deb | Linux |
| Linux kernel (USN-5317-1) linux-image-5.13.0-1017-aws_5.13.0-1017.19_amd64.deb | Linux |
| Linux kernel (USN-5317-1) linux-image-5.13.0-1017-aws_5.13.0-1017.19~20.04.1_amd64.deb | Linux |
| Linux kernel (USN-5317-1) linux-image-5.13.0-1019-gcp_5.13.0-1019.23_amd64.deb | Linux |
| Linux kernel (USN-5317-1) linux-image-5.13.0-1019-gcp_5.13.0-1019.23~20.04.1_amd64.deb | Linux |
| Linux kernel (USN-5317-1) linux-image-5.14.0-1027-oem_5.14.0-1027.30_amd64.deb | Linux |
| Linux kernel (USN-5317-1) linux-image-5.13.0-1017-azure_5.13.0-1017.19_amd64.deb | Linux |
| Linux kernel (USN-5317-1) linux-image-5.13.0-1017-azure_5.13.0-1017.19~20.04.1_amd64.deb | Linux |
| Linux kernel (USN-5317-1) linux-image-5.13.0-35-generic_5.13.0-35.40_amd64.deb | Linux |
| Linux kernel (USN-5317-1) linux-image-5.13.0-35-generic_5.13.0-35.40~20.04.1_amd64.deb | Linux |
| Linux kernel (USN-5317-1) linux-image-generic-hwe-20.04_5.13.0.35.40~20.04.20_amd64.deb | Linux |
| Linux kernel (USN-5317-1) linux-image-virtual-hwe-20.04_5.13.0.35.40~20.04.20_amd64.deb | Linux |
| Linux kernel (USN-5317-1) linux-image-5.13.0-1021-oracle_5.13.0-1021.26_amd64.deb | Linux |
| Linux kernel (USN-5317-1) linux-image-5.13.0-1021-oracle_5.13.0-1021.26~20.04.1_amd64.deb | Linux |
| Linux kernel (USN-5317-1) linux-image-5.13.0-35-lowlatency_5.13.0-35.40_amd64.deb | Linux |
| Linux kernel (USN-5317-1) linux-image-5.13.0-35-lowlatency_5.13.0-35.40~20.04.1_amd64.deb | Linux |
| Linux kernel (USN-5317-1) linux-image-lowlatency-hwe-20.04_5.13.0.35.40~20.04.20_amd64.deb | Linux |
| Kernel-uek update (ELSA-2022-9244) kernel-uek-5.4.17-2136.305.5.3.el7uek.x86_64.rpm | Linux |
| Kernel-uek-debug update (ELSA-2022-9244) kernel-uek-debug-5.4.17-2136.305.5.3.el7uek.x86_64.rpm | Linux |
| Kernel-uek-debug-devel update (ELSA-2022-9244) kernel-uek-debug-devel-5.4.17-2136.305.5.3.el7uek.x86_64.rpm | Linux |
| Kernel-uek-devel update (ELSA-2022-9244) kernel-uek-devel-5.4.17-2136.305.5.3.el7uek.x86_64.rpm | Linux |
| Kernel-uek-doc update (ELSA-2022-9244) kernel-uek-doc-5.4.17-2136.305.5.3.el7uek.noarch.rpm | Linux |
| Kernel-uek-tools update (ELSA-2022-9244) kernel-uek-tools-5.4.17-2136.305.5.3.el7uek.x86_64.rpm | Linux |
| Kernel-uek update (ELSA-2022-9244) kernel-uek-5.4.17-2136.305.5.3.el8uek.x86_64.rpm | Linux |
| Kernel-uek-debug update (ELSA-2022-9244) kernel-uek-debug-5.4.17-2136.305.5.3.el8uek.x86_64.rpm | Linux |
| Kernel-uek-debug-devel update (ELSA-2022-9244) kernel-uek-debug-devel-5.4.17-2136.305.5.3.el8uek.x86_64.rpm | Linux |
| Kernel-uek-devel update (ELSA-2022-9244) kernel-uek-devel-5.4.17-2136.305.5.3.el8uek.x86_64.rpm | Linux |
| Kernel-uek-doc update (ELSA-2022-9244) kernel-uek-doc-5.4.17-2136.305.5.3.el8uek.noarch.rpm | Linux |
| Kernel-uek-container update (ELSA-2022-9245) kernel-uek-container-5.4.17-2136.305.5.3.el8.x86_64.rpm | Linux |
| Kernel-uek-container-debug update (ELSA-2022-9245) kernel-uek-container-debug-5.4.17-2136.305.5.3.el8.x86_64.rpm | Linux |
| Linux kernel for Intel IOTG (USN-5362-1) linux-image-intel_5.13.0.1010.11_amd64.deb | Linux |
| Linux kernel for Intel IOTG (USN-5362-1) linux-image-5.13.0-1010-intel_5.13.0-1010.10_amd64.deb | Linux |
| (RHSA-2022:1535) kpatch-patch security update kpatch-patch-4_18_0-348-1-4.el8.x86_64.rpm | Linux |
| (RHSA-2022:1535) kpatch-patch security update kpatch-patch-4_18_0-348-debugsource-1-4.el8.x86_64.rpm | Linux |
| (RHSA-2022:1535) kpatch-patch security update kpatch-patch-4_18_0-348_12_2-1-2.el8_5.x86_64.rpm | Linux |
| (RHSA-2022:1535) kpatch-patch security update kpatch-patch-4_18_0-348_12_2-debugsource-1-2.el8_5.x86_64.rpm | Linux |
| (RHSA-2022:1535) kpatch-patch security update kpatch-patch-4_18_0-348_20_1-1-1.el8_5.x86_64.rpm | Linux |
| (RHSA-2022:1535) kpatch-patch security update kpatch-patch-4_18_0-348_20_1-debugsource-1-1.el8_5.x86_64.rpm | Linux |
| (RHSA-2022:1535) kpatch-patch security update kpatch-patch-4_18_0-348_2_1-1-3.el8_5.x86_64.rpm | Linux |
| (RHSA-2022:1535) kpatch-patch security update kpatch-patch-4_18_0-348_2_1-debugsource-1-3.el8_5.x86_64.rpm | Linux |
| (RHSA-2022:1535) kpatch-patch security update kpatch-patch-4_18_0-348_7_1-1-3.el8_5.x86_64.rpm | Linux |
| (RHSA-2022:1535) kpatch-patch security update kpatch-patch-4_18_0-348_7_1-debugsource-1-3.el8_5.x86_64.rpm | Linux |
| (RHSA-2022:1550) kernel security and bug fix update bpftool-4.18.0-348.23.1.el8_5.x86_64.rpm | Linux |
| (RHSA-2022:1550) kernel security and bug fix update kernel-4.18.0-348.23.1.el8_5.x86_64.rpm | Linux |
| (RHSA-2022:1550) kernel security and bug fix update kernel-abi-stablelists-4.18.0-348.23.1.el8_5.noarch.rpm | Linux |
| (RHSA-2022:1550) kernel security and bug fix update kernel-core-4.18.0-348.23.1.el8_5.x86_64.rpm | Linux |
| (RHSA-2022:1550) kernel security and bug fix update kernel-cross-headers-4.18.0-348.23.1.el8_5.x86_64.rpm | Linux |
| (RHSA-2022:1550) kernel security and bug fix update kernel-debug-4.18.0-348.23.1.el8_5.x86_64.rpm | Linux |
| (RHSA-2022:1550) kernel security and bug fix update kernel-debug-core-4.18.0-348.23.1.el8_5.x86_64.rpm | Linux |
| (RHSA-2022:1550) kernel security and bug fix update kernel-debug-devel-4.18.0-348.23.1.el8_5.x86_64.rpm | Linux |
| (RHSA-2022:1550) kernel security and bug fix update kernel-debug-modules-4.18.0-348.23.1.el8_5.x86_64.rpm | Linux |
| (RHSA-2022:1550) kernel security and bug fix update kernel-debug-modules-extra-4.18.0-348.23.1.el8_5.x86_64.rpm | Linux |
| (RHSA-2022:1550) kernel security and bug fix update kernel-devel-4.18.0-348.23.1.el8_5.x86_64.rpm | Linux |
| (RHSA-2022:1550) kernel security and bug fix update kernel-doc-4.18.0-348.23.1.el8_5.noarch.rpm | Linux |
| (RHSA-2022:1550) kernel security and bug fix update kernel-headers-4.18.0-348.23.1.el8_5.x86_64.rpm | Linux |
| (RHSA-2022:1550) kernel security and bug fix update kernel-modules-4.18.0-348.23.1.el8_5.x86_64.rpm | Linux |
| (RHSA-2022:1550) kernel security and bug fix update kernel-modules-extra-4.18.0-348.23.1.el8_5.x86_64.rpm | Linux |
| (RHSA-2022:1550) kernel security and bug fix update kernel-tools-4.18.0-348.23.1.el8_5.x86_64.rpm | Linux |
| (RHSA-2022:1550) kernel security and bug fix update kernel-tools-libs-4.18.0-348.23.1.el8_5.x86_64.rpm | Linux |
| (RHSA-2022:1550) kernel security and bug fix update perf-4.18.0-348.23.1.el8_5.x86_64.rpm | Linux |
| (RHSA-2022:1550) kernel security and bug fix update python3-perf-4.18.0-348.23.1.el8_5.x86_64.rpm | Linux |
| Bpftool update (ELSA-2022-1550) bpftool-4.18.0-348.23.1.el8_5.x86_64.rpm | Linux |
| Kernel update (ELSA-2022-1550) kernel-4.18.0-348.23.1.el8_5.x86_64.rpm | Linux |
| Kernel-abi-stablelists update (ELSA-2022-1550) kernel-abi-stablelists-4.18.0-348.23.1.el8_5.noarch.rpm | Linux |
| Kernel-core update (ELSA-2022-1550) kernel-core-4.18.0-348.23.1.el8_5.x86_64.rpm | Linux |
| Kernel-cross-headers update (ELSA-2022-1550) kernel-cross-headers-4.18.0-348.23.1.el8_5.x86_64.rpm | Linux |
| Kernel-debug update (ELSA-2022-1550) kernel-debug-4.18.0-348.23.1.el8_5.x86_64.rpm | Linux |
| Kernel-debug-core update (ELSA-2022-1550) kernel-debug-core-4.18.0-348.23.1.el8_5.x86_64.rpm | Linux |
| Kernel-debug-devel update (ELSA-2022-1550) kernel-debug-devel-4.18.0-348.23.1.el8_5.x86_64.rpm | Linux |
| Kernel-debug-modules update (ELSA-2022-1550) kernel-debug-modules-4.18.0-348.23.1.el8_5.x86_64.rpm | Linux |
| Kernel-debug-modules-extra update (ELSA-2022-1550) kernel-debug-modules-extra-4.18.0-348.23.1.el8_5.x86_64.rpm | Linux |
| Kernel-devel update (ELSA-2022-1550) kernel-devel-4.18.0-348.23.1.el8_5.x86_64.rpm | Linux |
| Kernel-doc update (ELSA-2022-1550) kernel-doc-4.18.0-348.23.1.el8_5.noarch.rpm | Linux |
| Kernel-headers update (ELSA-2022-1550) kernel-headers-4.18.0-348.23.1.el8_5.x86_64.rpm | Linux |
| Kernel-modules update (ELSA-2022-1550) kernel-modules-4.18.0-348.23.1.el8_5.x86_64.rpm | Linux |
| Kernel-modules-extra update (ELSA-2022-1550) kernel-modules-extra-4.18.0-348.23.1.el8_5.x86_64.rpm | Linux |
| Kernel-tools update (ELSA-2022-1550) kernel-tools-4.18.0-348.23.1.el8_5.x86_64.rpm | Linux |
| Kernel-tools-libs update (ELSA-2022-1550) kernel-tools-libs-4.18.0-348.23.1.el8_5.x86_64.rpm | Linux |
| Kernel-tools-libs-devel update (ELSA-2022-1550) kernel-tools-libs-devel-4.18.0-348.23.1.el8_5.x86_64.rpm | Linux |
| Perf update (ELSA-2022-1550) perf-4.18.0-348.23.1.el8_5.x86_64.rpm | Linux |
| Python3-perf update (ELSA-2022-1550) python3-perf-4.18.0-348.23.1.el8_5.x86_64.rpm | Linux |
| Kernel-uek-container update (ELSA-2022-9480) kernel-uek-container-5.4.17-2136.308.7.el8.x86_64.rpm | Linux |
| Kernel-uek-container-debug update (ELSA-2022-9480) kernel-uek-container-debug-5.4.17-2136.308.7.el8.x86_64.rpm | Linux |
| Kernel-uek-container update (ELSA-2022-9999) kernel-uek-container-5.4.17-2136.313.6.el8.x86_64.rpm | Linux |
| Kernel-uek-container-debug update (ELSA-2022-9999) kernel-uek-container-debug-5.4.17-2136.313.6.el8.x86_64.rpm | Linux |
| (RHSA-2022:1535)Important: security update kpatch-patch-4_18_0-348-debuginfo-1-4.el8.x86_64.rpm | Linux |
| (RHSA-2022:1535)Important: security update kpatch-patch-4_18_0-348_12_2-debuginfo-1-2.el8_5.x86_64.rpm | Linux |
| (RHSA-2022:1535)Important: security update kpatch-patch-4_18_0-348_20_1-debuginfo-1-1.el8_5.x86_64.rpm | Linux |
| (RHSA-2022:1535)Important: security update kpatch-patch-4_18_0-348_2_1-debuginfo-1-3.el8_5.x86_64.rpm | Linux |
| (RHSA-2022:1535)Important: security update kpatch-patch-4_18_0-348_7_1-debuginfo-1-3.el8_5.x86_64.rpm | Linux |
| kernel Security Update (ALAS-2023-070) kernel-livepatch-6.1.10-15.42-1.0-0.amzn2023.x86_64.rpm | Linux |
| kernel Security Update (ALAS2023-2023-070) bpftool-6.1.10-15.42.amzn2023.x86_64.rpm | Linux |
| kernel Security Update (ALAS2023-2023-070) python3-perf-6.1.10-15.42.amzn2023.x86_64.rpm | Linux |
| kernel Security Update (ALAS2023-2023-070) perf-6.1.10-15.42.amzn2023.x86_64.rpm | Linux |
| kernel Security Update (ALAS2023-2023-070) kernel-6.1.10-15.42.amzn2023.x86_64.rpm | Linux |
| kernel Security Update (ALAS2023-2023-070) kernel-devel-6.1.10-15.42.amzn2023.x86_64.rpm | Linux |
| kernel Security Update (ALAS2023-2023-070) kernel-headers-6.1.10-15.42.amzn2023.x86_64.rpm | Linux |
| kernel Security Update (ALAS2023-2023-070) kernel-libbpf-6.1.10-15.42.amzn2023.x86_64.rpm | Linux |
| kernel Security Update (ALAS2023-2023-070) kernel-libbpf-devel-6.1.10-15.42.amzn2023.x86_64.rpm | Linux |
| kernel Security Update (ALAS2023-2023-070) kernel-libbpf-static-6.1.10-15.42.amzn2023.x86_64.rpm | Linux |
| kernel Security Update (ALAS2023-2023-070) kernel-livepatch-6.1.10-15.42-1.0-0.amzn2023.x86_64.rpm | Linux |
| kernel Security Update (ALAS2023-2023-070) kernel-tools-6.1.10-15.42.amzn2023.x86_64.rpm | Linux |
| kernel Security Update (ALAS2023-2023-070) kernel-tools-devel-6.1.10-15.42.amzn2023.x86_64.rpm | Linux |
| Improper Privilege Management Vulnerability (CVE-2022-25636) | NCM |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234