CVE-2022-1016

MITRE NVD CVE.ORG Print: PDF PDF

Summary

CVECVE-2022-1016
StatePUBLIC
Assigner[email protected]
Source PriorityCVE Program / NVD first with legacy fallback
Published2022-08-29 15:15:00 UTC
Updated2023-06-27 15:47:00 UTC
DescriptionA flaw was found in the Linux kernel in net/netfilter/nf_tables_core.c:nft_do_chain, which can cause a use-after-free. This issue needs to handle 'return' with proper preconditions, as it can lead to a kernel information leak problem caused by a local, unprivileged attacker.

Risk And Classification

Problem Types: CWE-909

NVD Known Affected Configurations (CPE 2.3)

TypeVendorProductVersionUpdateEditionLanguage
Operating System Linux Linux Kernel 3.13 rc1 All All
Operating System Linux Linux Kernel All All All All
Operating System Linux Linux Kernel All All All All
Operating System Redhat Enterprise Linux 8.0 All All All
Operating System Redhat Enterprise Linux 9.0 All All All

References

ReferenceSourceLinkTags
2066614 – (CVE-2022-1016) CVE-2022-1016 kernel: uninitialized registers on stack in nft_do_chain can cause kernel pointer leakage to UM MISC bugzilla.redhat.com
Red Hat Customer Portal - Access to 24x7 support and knowledge MISC access.redhat.com
How The Tables Have Turned: An analysis of two new Linux vulnerabilities in nf_tables · David's Blog MISC blog.dbouman.nl
oss-sec: Linux kernel: CVE-2022-1015,CVE-2022-1016 in nf_tables cause privilege escalation, information leak MISC seclists.org
Red Hat Customer Portal - Access to 24x7 support and knowledge MISC access.redhat.com
Red Hat Customer Portal - Access to 24x7 support and knowledge MISC access.redhat.com
Red Hat Customer Portal - Access to 24x7 support and knowledge MISC access.redhat.com
Red Hat Customer Portal - Access to 24x7 support and knowledge MISC access.redhat.com
CVE Program record CVE.ORG www.cve.org canonical
NVD vulnerability detail NVD nvd.nist.gov canonical, analysis

Legacy QID Mappings

  • 159743 Oracle Enterprise Linux Security Update for unbreakable enterprise kernel (ELSA-2022-9266)
  • 159744 Oracle Enterprise Linux Security Update for unbreakable enterprise kernel-container (ELSA-2022-9267)
  • 159749 Oracle Enterprise Linux Security Update for unbreakable enterprise kernel (ELSA-2022-9270)
  • 159750 Oracle Enterprise Linux Security Update for unbreakable enterprise kernel-container (ELSA-2022-9271)
  • 159754 Oracle Enterprise Linux Security Update for unbreakable enterprise kernel-container (ELSA-2022-9274)
  • 159755 Oracle Enterprise Linux Security Update for unbreakable enterprise kernel (ELSA-2022-9273)
  • 159760 Oracle Enterprise Linux Security Update for unbreakable enterprise kernel-container (ELSA-2022-9314)
  • 159763 Oracle Enterprise Linux Security Update for unbreakable enterprise kernel (ELSA-2022-9313)
  • 159777 Oracle Enterprise Linux Security Update for unbreakable enterprise kernel (ELSA-2022-9348)
  • 159785 Oracle Enterprise Linux Security Update for unbreakable enterprise kernel-container (ELSA-2022-9368)
  • 159788 Oracle Enterprise Linux Security Update for unbreakable enterprise kernel (ELSA-2022-9365)
  • 160210 Oracle Enterprise Linux Security Update for kernel (ELSA-2022-7683)
  • 160270 Oracle Enterprise Linux Security Update for kernel (ELSA-2022-8267)
  • 179258 Debian Security Update for linux (DSA 5127-1)
  • 180282 Debian Security Update for linux (DLA 3065-1)
  • 180605 Debian Security Update for linux (DSA 5173-1)
  • 184991 Debian Security Update for linux (CVE-2022-1016)
  • 198745 Ubuntu Security Notification for Linux kernel Vulnerabilities (USN-5383-1)
  • 198747 Ubuntu Security Notification for Linux kernel (OEM) Vulnerabilities (USN-5381-1)
  • 198767 Ubuntu Security Notification for Linux kernel Vulnerabilities (USN-5390-1)
  • 198770 Ubuntu Security Notification for Linux kernel (Raspberry Pi) Vulnerabilities (USN-5390-2)
  • 198785 Ubuntu Security Notification for Linux kernel Vulnerabilities (USN-5415-1)
  • 198825 Ubuntu Security Notification for Linux kernel Vulnerabilities (USN-5466-1)
  • 199560 Ubuntu Security Notification for Linux kernel (AWS) Vulnerabilities (USN-6001-1)
  • 199568 Ubuntu Security Notification for Linux kernel (AWS) Vulnerabilities (USN-6013-1)
  • 199577 Ubuntu Security Notification for Linux kernel Vulnerabilities (USN-6014-1)
  • 240815 Red Hat Update for kernel-rt (RHSA-2022:7444)
  • 240817 Red Hat Update for kernel security (RHSA-2022:7683)
  • 240869 Red Hat Update for kernel-rt (RHSA-2022:7933)
  • 240904 Red Hat Update for kernel security (RHSA-2022:8267)
  • 241823 Red Hat Update for kernel (RHSA-2023:4137)
  • 241830 Red Hat Update for kernel-rt (RHSA-2023:4138)
  • 242855 Red Hat Update for kernel (RHSA-2024:0412)
  • 353211 Amazon Linux Security Advisory for kernel : ALAS-2022-1577
  • 353212 Amazon Linux Security Advisory for kernel : ALAS2-2022-1768
  • 353213 Amazon Linux Security Advisory for kernel : ALAS2KERNEL-5.4-2022-024
  • 353214 Amazon Linux Security Advisory for kernel : ALAS2KERNEL-5.10-2022-012
  • 353964 Amazon Linux Security Advisory for kernel : ALAS2KERNEL-5.15-2022-001
  • 354327 Amazon Linux Security Advisory for kernel : ALAS2022-2022-083
  • 354468 Amazon Linux Security Advisory for kernel : ALAS2022-2022-185
  • 354499 Amazon Linux Security Advisory for kernel : ALAS2022-2022-042
  • 354542 Amazon Linux Security Advisory for kernel : ALAS-2022-185
  • 355199 Amazon Linux Security Advisory for kernel : ALAS2023-2023-070
  • 355565 Amazon Linux Security Advisory for kernel : ALAS2KERNEL-5.15-2023-023
  • 376925 Alibaba Cloud Linux Security Update for cloud-kernel (ALINUX3-SA-2022:0125)
  • 377124 Alibaba Cloud Linux Security Update for cloud-kernel (ALINUX3-SA-2022:0029)
  • 377181 Alibaba Cloud Linux Security Update for cloud-kernel (ALINUX2-SA-2022:0022)
  • 390261 Oracle Managed Virtualization (VM) Server for x86 Security Update for kernel (OVMSA-2022-0014)
  • 6140021 AWS Bottlerocket Security Update for kernel (GHSA-jhj4-c429-6f8m)
  • 6140112 AWS Bottlerocket Security Update for kernel (GHSA-jhj4-c429-6f8m)
  • 671771 EulerOS Security Update for kernel (EulerOS-SA-2022-1829)
  • 671774 EulerOS Security Update for kernel (EulerOS-SA-2022-1817)
  • 671817 EulerOS Security Update for kernel (EulerOS-SA-2022-1868)
  • 671862 EulerOS Security Update for kernel (EulerOS-SA-2022-1896)
  • 671870 EulerOS Security Update for kernel (EulerOS-SA-2022-1934)
  • 671915 EulerOS Security Update for kernel (EulerOS-SA-2022-1969)
  • 752036 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2022:1183-1)
  • 752039 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2022:1196-1)
  • 752042 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2022:1197-1)
  • 752048 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2022:1266-1)
  • 752052 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2022:1255-1)
  • 752053 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2022:1267-1)
  • 752056 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2022:1270-1)
  • 752058 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2022:1256-1)
  • 752081 SUSE Enterprise Linux Security Update for the Linux Kernel (Live Patch 43 for SLE 12 SP3) (SUSE-SU-2022:1440-1)
  • 752370 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2022:2520-1)
  • 753137 SUSE Enterprise Linux Security Update for the Linux Kernel (Live Patch 15 for SLE 15 SP3) (SUSE-SU-2022:1453-1)
  • 753148 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2022:2615-1)
  • 753273 SUSE Enterprise Linux Security Update for the Linux Kernel (Live Patch 28 for SLE 15) (SUSE-SU-2022:1329-1)
  • 753287 SUSE Enterprise Linux Security Update for the Linux Kernel (Live Patch 29 for SLE 15 SP1) (SUSE-SU-2022:1335-1)
  • 753330 SUSE Enterprise Linux Security Update for the Linux Kernel (Live Patch 0 for SLE 15 SP4) (SUSE-SU-2022:2268-1)
  • 753373 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2022:1257-1)
  • 753390 SUSE Enterprise Linux Security Update for the Linux Kernel (Live Patch 14 for SLE 15 SP3) (SUSE-SU-2022:1326-1)
  • 753417 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2022:1163-1)
  • 753427 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2022:1407-1)
  • 753445 SUSE Enterprise Linux Security Update for the Linux Kernel (Live Patch 12 for SLE 15 SP3) (SUSE-SU-2022:1369-1)
  • 903810 Common Base Linux Mariner (CBL-Mariner) Security Update for kernel (10857)
  • 904260 Common Base Linux Mariner (CBL-Mariner) Security Update for kernel (10857-1)
  • 904794 Common Base Linux Mariner (CBL-Mariner) Security Update for kernel (12127)
  • 905203 Common Base Linux Mariner (CBL-Mariner) Security Update for kernel (12127-1)
  • 905820 Common Base Linux Mariner (CBL-Mariner) Security Update for kernel (12127-2)
  • 906515 Common Base Linux Mariner (CBL-Mariner) Security Update for kernel (10857-2)
  • 940732 AlmaLinux Security Update for kernel (ALSA-2022:7683)
  • 940766 AlmaLinux Security Update for kernel-rt (ALSA-2022:7444)
  • 940798 AlmaLinux Security Update for kernel (ALSA-2022:8267)
  • 940843 AlmaLinux Security Update for kernel-rt (ALSA-2022:7933)
  • 960176 Rocky Linux Security Update for kernel-rt (RLSA-2022:7444)
  • 960184 Rocky Linux Security Update for kernel (RLSA-2022:7683)
© CVE.report 2026 |

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.

CVE, CWE, and OVAL are registred trademarks of The MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. This site includes MITRE data granted under the following license.

CVE.report and Source URL Uptime Status status.cve.report